cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

No Preparation of Database Query Despite the syntax of the query seems to be parameterized

Correct me if I am wrong, but isn't that the placeholder of @<variablename> the sign of prepared statements/parameterized query? But why do I see all of them are not prepared?

1 REPLY 1

harald_berger
Dynatrace Pro
Dynatrace Pro

Hi Wai,

These are not prepared statements. Its the pagination syntax of SQLServer.

https://social.technet.microsoft.com/wiki/contents...

Best

Harry