ASP.NET: Does LINQ (EF) Prevent SQL Injection

Posted on 2011-10-13
Last Modified: 2012-05-12

I am building my first web application; I'm using  ASP.NET 4, Entity Framework, and SQL Server 2008 database.

I'm trying to learn about securing the application against malicious input.

If I use Entity Data Sources to read / write data, does this automatically prevent SQL injection, or are there additional steps I need to take to make sure the data is clean?

Question by:JMS1965
    LVL 14

    Accepted Solution

    Sql Injection can be performed even if you are using entity framework.  This is a helpful article from Microsoft:

    Author Closing Comment

    That's very helpful ... thank you so much!!

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Article by: btan
    The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
    Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
    This video discusses moving either the default database or any database to a new volume.
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    737 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now