SQL videos | SQL Programming Part 13 - Dynamic SQL

Posted by Andrew Gould on 10 May 2013

Dynamic SQL allows you to build a complete SQL statement out of individual strings of text and execute it as though it was an SQL statement. It allows you to create immensely flexible queries in which any part of a statement can be parameterised, but it can also leave you vulnerable to the dreaded SQL injection attack! This video teaches you how to build dynamic SQL statements, how to use stored procedures to parameterise the process, and the potential dangers of using dynamic SQL in a live system.

You can increase the size of the video:

Full screen mode for YouTube

You can view the video in full screen mode as shown on the left, using the icon at the bottom right of the frame.

You can also increase the quality of the video:

Changing resolution

You can improve the resolution of the video using another icon at the bottom right of the frame. This will slow down the connection speed, but increase the display and sound quality. This icon only becomes visible when you start playing the video.

Finally, if nothing happens when you play the video, check that you're not using IE in compatibility view.

This page has 0 threads Add post