Reputation: 1009
How to set Escape character in Oracle?
I am writing accessing Oracle Database via JSP/JS. I would like to know whether it is possible to set ESCAPE character with those SELECT / INSERT INTO / ... commands ?
I know that "SET ESCAPE \" works under SQL Plus.
But is it possible to set it through coding, so that I can make sure that the correct ESCAPE character is in us.
Thanks.
Upvotes: 0
Views: 1104
Answers (1)
Reputation: 332571
This approach is open to SQL injection attacks.
It would be better to use prepared statements, along with parameterized queries - this way your code isn't open to exploitation, and you don't have to concern yourself with escaping characters. And Oracle has Packages, so you can logically group functions, procedures and define constants in Packages... God, I miss packages...
Upvotes: 1
Related Questions
- How to escape special characters in Oracle?
- How to define default escape character in Oracle?
- How to insert special characters into oracle table?
- REAL ESCAPE STRING IN ORACLE
- How to store special characters in Oracle table?
- set escape character in oracle
- Escaping special characters in SQL
- How to escape single quotes ' In Oracle 11g?
- Escape characters in jsp?
- How can I escape both quotation mark and backslash in jsp?