j
k
j a
j l
Reinoud van Leeuwen writes:
I does not seem to be very safe to use a construct like select record from table where field like "%<dtml-var string_from_form>" Use '<dtml-var string_from_form sql_quote>'.
I does not seem to be very safe to use a construct like
select record from table where field like "%<dtml-var string_from_form>" Use '<dtml-var string_from_form sql_quote>'.
Dieter
Back to the thread
Back to the list
