Skip to Main Content

Breadcrumb

Question and Answer

Chris Saxon

Thanks for the question, Ricardo.

Asked: June 10, 2021 - 10:30 am UTC

Last updated: June 11, 2021 - 5:06 pm UTC

Version: 11g

Viewed 1000+ times

You Asked

Hi guys.

I have a piece of code like this:

declare 
  myvar number := 4;     
begin
 select rule into v_stmt from rules where rule_id=1;
 --v_stmt -> 'begin :a := my_function(my_var, 1), 1); end;'
 execute immediate v_stmt;
end;
/


Is there a way to inject my_var value to execute v_stmt?

and Chris said...

You want to bind it!

Do this by:

- Adding colon before the variable in the statement to make it a bind variable
- Supply it's value with the using clause

For example:
set serveroutput on
declare 
  myvar number := 4;     
begin
 execute immediate 
   'begin dbms_output.put_line ( :myvar ); end;'
   using myvar;
end;
/
4

Rating

  (1 rating)

Is this answer out of date? If it is, please let us know via a Comment

Comments

So simple. Thank you

Ricardo Oberdan Pereira, June 11, 2021 - 12:00 pm UTC

So simple.
Thanks Chris.
You're amazing guys!
Chris Saxon
June 11, 2021 - 5:06 pm UTC

You're welcome
more

Connor and Chris don't just spend all day on AskTOM. You can also catch regular content via Connor's blog and Chris's blog. Or if video is more your thing, check out Connor's latest video and Chris's latest video from their Youtube channels. And of course, keep up to date with AskTOM via the official twitter account.

More to Explore

PL/SQL demos

Check out more PL/SQL tutorials on our LiveSQL tool.

PL/SQL docs

PL/SQL reference manual from the Oracle documentation library