MS SQL Query Is this Safe?

[Ridchi80m]

I'm not experienced with these sorts of things so I would just like to ask if I was to use the code below will I be safe from a MS SQL Injection attacks / anything like that?\[code\]' OPEN DATABASEdim objConn,objRS,objTRS,objUnitSet objConn = Server.CreateObject("ADODB.Command") objConn.ActiveConnection = "Driver={SQL Server};Server=MSSQLSrv;Database=DbTest;UID=blablabala;PWD=blablabala"strQuery = "SELECT USERNAME,PASSWORD from CUSTOMERS where EMAIL=?"objConn.CommandText=strQuery objConn.Parameters(0) = Request.QueryString("email")SET objRS = objConn.execute(strQuery)\[/code\]