ORACLE-BASE – DBMS_ASSERT – Sanitize User Input to Help Prevent SQL Injection
DBMS_ASSERT – Sanitize User Input to Help Prevent SQL Injection
The DBMS_ASSERT package was introduced in Oracle 10g Release 2 and backported to Release 1 in the Oracle October 2005 Critical Patch Update. There are currently no references to this package in the 10g Release 2 documentation or on Metalink. The package contains a number of functions that can be used to sanitize user input and help to guard against SQL injection in applications that don’t use bind variables.