Home Forums SQL Server 2012 SQL Server 2012 - T-SQL Is there a way to identify dynamic sql that may be vulnerable to sql injection? RE: Is there a way to identify dynamic sql that may be vulnerable to sql injection?
HappyGeek
SSCoach
Points: 18726
More actions
January 3, 2018 at 6:30 am
#1974207
A starting point may be to query stored procedures for the existence of sp_executeSQL.
...