&#xfeff;<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
   "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html lang="EN" xmlns="http://www.w3.org/1999/xhtml" xml:lang="EN">
<head>
<title> SQL injection </title>
<meta name="Generator" content="Author-it" />
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<meta name="Keywords" content=""/>
<script language="javascript" type="text/javascript" charset="UTF-8" src="dhtml_toc.js"></script>
<script language="javascript" type="text/javascript" charset="UTF-8" src="open_parent.js"></script>
<script language="javascript" type="text/javascript" charset="UTF-8" src="dhtml_load.js"></script>
<script language="javascript" type="text/javascript" charset="UTF-8" src="dhtml_search.js"></script>
<link rel="stylesheet" type="text/css" href="newwave.css"/>
<link rel="stylesheet" type="text/css" href="index_stylesheet.css"/>
<base target="CONTENT"/>
<script>window.ohcglobal || document.write('<script src="/en/dcommon/js/global.js">\x3C/script>')</script></head>

<body onload="loadParent();;bodyLoad();;;if (isTOCLoaded()) {expand('207421');expand('210301');expand('207420');highlight('207423')}" text="#000000" link="#0000A0" alink="#008000" vlink="#FF0000">
<div id="searchResultsNone"></div>
<div id="content">
    <table summary="" class="relatedtopics aboveheading" cellpadding="0" cellspacing="0" border="0">
<tr valign="top">
<td width= "18">
<p class="bodytext"><a href="207422.htm" target="_self"><img width="34" height="34" src="125.gif" alt="Previous Topic" vspace="0" hspace="0" align="bottom" border="0" /></a></p></td>
<td width= "18">
<p class="bodytext"><a href="207424.htm" target="_self"><img width="33" height="34" src="124.gif" alt="Next Topic" vspace="0" hspace="0" align="bottom" border="0" /></a></p></td>
<td width= "48">
<p class="bodytext"><a href="javascript:expand('207421');expand('210301');expand('207420');highlight('207423')" onclick="loadTOC()" target="_self"><img width="165" height="27" src="122.gif" alt="Book Contents" vspace="0" hspace="0" align="bottom" border="0" /></a></p></td>
</tr>
</table>
<h4 class="heading4">SQL injection</h4>
<p class="bodytext">To prevent SQL injections, the Clinical Data API uses bind variables and does not dynamically generate SQL, which makes SQL injection impossible.</p>


 
<p class="copy">Copyright &copy; 2016, 2017 Oracle and/or its affiliates. All rights reserved.</p>
</div>
</body>
</html>
<footer>
</footer>
<noscript>
<p>Scripting on this page enhances content navigation, but does not change the content in any way.</p>
</noscript>
<script>$(document).foundation();</script>
</body>
</html>