Viewing 2 posts - 16 through 17 (of 17 total)
It might also be worth checking your web logs as query string parameters can also be vulnerable to SQL injection.
Try a search for apostrophes or any SQL keywords.
August 5, 2009 at 2:30 am
#1034649
Just a thought but
http://omnibuzz-sql.blogspot.com/2006/11/parameter-sniffing-stored-procedures.html
Worth a read as it sounds like you're encountering the same symptoms we had.
It explains what the effects of parameter sniffing can be.
That said...
December 16, 2008 at 4:07 am
#913030