sql injection – how to sanitize program generated sql clause

in standard Ajax, where and order by SQL clauses are provided by the program (not user), egvar url = “.select?dd=emp&where=”+escape(“emp_tp=’abc’ and hire_dt$where =...

Implementing an ajax tree in apex

So ajax trees. That sounds great right? To load the data on demand and not in one huge chunk? Honestly, I’ve noticed slowness/slowdown when there are even just a few hundred nodes around. And why?...