Home Forums Article Discussions Article Discussions by Author Discuss Content Posted by Alex Grinberg The Multi-valued Parameters problem in Reporting Services RE: The Multi-valued Parameters problem in Reporting Services
Simon Sabin
SSCrazy Eights
Points: 8142
More actions
April 21, 2009 at 1:32 am
#981229
This is very dangerous as it allows SQL Injection, and as parameters can be passed by URL this is very very risky.
Using a split function is the safer option.
Simon SabinSQL Server MVPhttp://sqlblogcasts.com/blogs/simons