Custom SQL Editor
You can manually input a SQL query string in the Custom SQL Editor if custom SQL editing is enabled. You can invoke this editor from the Create a Query or Select a Stored Procedure wizard page.
The Custom SQL Editor supports syntax highlighting to enable you to write and read SQL queries more efficiently.
Note that the default query validation mechanism only allows custom queries containing SELECT statements (except for SELECT INTO clauses).
Important
Enabling custom SQL in your web application exposes your databases to possible SQL injections. Before enabling this option, make sure to apply a secure SQL validation that prevents execution of harmful requests. See General Security Considerations for more information.
See Also