-
# 🦸♀️ Famed Scanner
## 📝 Description
Detected string concatenation with a non-literal variable in a "database/sql" Go SQL statement. This could lead to SQL injection if the variable is user-contro…
-
### Access Control for Table-Valued Functions (MS SQL), Table Functions (Oracle), and Set-Returning Functions (PostgreSQL)
In all three DBMS platforms (MS SQL, Oracle, and PostgreSQL), you can genera…
-
### I confirm that:
- [X] I have searched the existing [open AND closed issues](https://github.com/navidrome/navidrome/issues?q=is%3Aissue) to see if an issue already exists for the bug I've encoun…
-
Hi,
I have a long-running project and the number of sequential migration files is getting pretty high; it's mainly cosmetic, but I was wondering what the best way to squash all existing migrations …
-
### Search first
- [X] I searched and no similar issues were found
- related issue : #5674 and associated PR : #5700
### Description
Multiple SQL statements with anti slashes In simple quot…
-
### SABnzbd version
4.3.3
### Operating system
Arch Linux
### Using Docker image
None
### Description
If the `path` returned by `one_file_or_folder()` contains unicode surrogate code points, ad…
-
Hello! Does soci support temp tables between statements? Looks like it internally uses SQLPrepare. If we create temp table with SQLPrepare temp table will be deleted after execute (statement lifetime)…
-
* Remove the convention where filename is the view name. Instead have the developer define their MV/Table/View names in the helper functions or the raw SQL statements themselves
tg339 updated
4 months ago
-
Vulnerability Analysis
**Vulnerabilidades encontradas:**
1. XSS (Cross-Site Scripting): O código não faz sanitização dos dados de entrada antes de inseri-los nas consultas SQL. Isso pode permitir …
-
I think we should add an overload to the `exec` method to still have the possibility of passing an `_Executable` statement:
```
@overload
def exec(
self,
statement: _Exe…