Difference between revisions of "Parameterized Command Interface"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 +
http://www.texteltdelrel.com
 
{{Template:Stub}}
 
{{Template:Stub}}
  

Revision as of 11:50, 22 May 2009

http://www.texteltdelrel.com

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.


A parameterized command interface is used as an alternative to a string-based command interface. This type of interface prevents Injection attacks by keeping parameters separate from the command itself.

Examples of parameterized command interfaces include:

  • PreparedStatement in Java