Comments on: What’s good about selectionArgs in SQLite queries http://wangling.me/2009/08/whats-good-about-selectionargs-in-sqlite-queries/ I'm Wang Ling. I'm wangling you. Thu, 12 Apr 2012 02:09:56 +0000 hourly 1 http://wordpress.org/?v=3.3.2 By: Phil http://wangling.me/2009/08/whats-good-about-selectionargs-in-sqlite-queries/comment-page-1/#comment-598 Phil Thu, 12 Apr 2012 02:09:56 +0000 http://blog.wangling.me/?p=149#comment-598 If the data resides on the Android an SQL injection attack is like shooting yourself in the foot, is it not? If the data resides on the Android an SQL injection attack is like shooting yourself in the foot, is it not?

]]> By: Someone http://wangling.me/2009/08/whats-good-about-selectionargs-in-sqlite-queries/comment-page-1/#comment-589 Someone Sun, 11 Mar 2012 19:44:39 +0000 http://blog.wangling.me/?p=149#comment-589 I am beginning to have a feeling that Android developers never heard of SQL injection attacks... I am beginning to have a feeling that Android developers never heard of SQL injection attacks…

]]> By: st0le http://wangling.me/2009/08/whats-good-about-selectionargs-in-sqlite-queries/comment-page-1/#comment-455 st0le Wed, 12 Jan 2011 09:11:40 +0000 http://blog.wangling.me/?p=149#comment-455 But that leaves you open for SQL Injection attacks. Whats wrong with using "columns='?'" It's easy enough. Always use the selectionArgs if you want to avoid SQL Injections. But that leaves you open for SQL Injection attacks.

Whats wrong with using “columns=’?'”

It’s easy enough. Always use the selectionArgs if you want to avoid SQL Injections.

]]>