As described previously,
ConnectionString can be a point of entry for malicious attacks, which must be prevented. Of course, one could store the connection string either in an
app.config file for Windows applications — as we shall see in a later exercise, or a
web.config file in web applications. You will now learn the secure way to create a connection string using the class specifically created to handle this issue. It is not only secure and less error-prone, but also faster compared to one that can be custom built.
In each of the cases of malicious insertion of code, the program spits out the offending parameter.
In the following steps, you will be creating a Windows Forms ...