Use a LIKE statment on SQL Server XML Datatype
MSSql not allow you to search the XML datatype using the Like keyword, the following is the sample query to allow you to convert your XML datatype data into string, after that you can utilize the MSSql build in string function to query for your data. SELECT * FROM (SELECT…
Remove Carriage Return, Line Feed, Tab in TSQL
Having problem when I try to display the message that retrieved from database with the line break. When I try to manipulate the message using javascript, I keep getting the message of unterminated string javascript error message. tech.david-cheong.com Try to google for the alternative to remove the line break getting from DB,…
Building Secure Coldfusion Applications
Here is the presentation slide by Pete Freitag, Principal Consultant from Founeo Inc. In the presentation slide show it will cover the following topic include: Uchecked input File Uploads XSS-Cross Site Scripting SQL Injection Cross Site Request Forgery CRLF Injection Session Hijacking
Possible injection use keyword
All the web developer, web admin, as well as DB admin are always facing the attacking from all around the world toward their web site, but how to prevent it? Some may use the 3th party software to prevent it, some may just filter all the possible keyword enter by…
SQL Server Do's And Dont's
So, you are now the leader of a SQL Server based project and this is your first one, perhaps migrating from Access. Or maybe you have performance problems with your SQL Server and don’t know what to do next. Or maybe you simply want to know of some design guidelines…
Convert varchar into math calculation
I try to google, call, msn my friend to find out the solution when I stay back in my office until late night yesterday. But still no luck after few hours of trying. Thinking of gave up when back to office this morning, but one of my friend suddently send…
ISNULL, NULLIF MsSQL function
I just found out this usefu function in MSSQL when I try to Google for the solution to replace the null value with something else. So that I no need to do the checking again in my application. The function is call NULLIF and ISNULL This 2 functions are actually…