This is a hypothetical execute string.
Str_Post will contain a diverse range of characters including, but not limited to, quotes and commas.
Is there a way I can pass Str_Post to the stored SQL without heavily voilating the exec string syntax?
I have considered 'url encoding' it but that would require it to be decoded on the other end (which should be possible) but is this a good way to do so?

Execute code below, where con is the open database connection object.

' exec string
execStr = "exec qry_update '" & Str_Post & "'"
' executing stored procedure
Set rs = con.Execute (execStr)