Injection safe call to IAxaptaRecord.ExecuteStmt()

Question

Is there an injection safe way to call via the axpata business connector

string salesId = someObject.Text;

IAxaptaRecord salesLine = ax.CreateRecord(\"SalesLine         


        

Answer 1

you should do a replace on ' to \' e.g.

string salesId = someObject.Text.Replace("'", "\\'");