Control: ism-1276; Revision: 3; Updated: Mar-23; Applicability: ALL; Essential Eight: N/A ​

Parameterised queries or stored procedures, instead of dynamically generated queries, are used for database interactions.