-
I suspect the escaping of constant sql strings is not fully safe
I think `\` needs escaping too or else it can be used to escape a single quote
`select().from(MyTable).where(MyTable.field === "\\'…
-
The version description says that terraform-doc versions less than v0.12 are no longer supported. However, I have terraform-docs v0.19 in $PATH and README.md is not generated. If I revert pre-commit-t…
-
Linux doc describes that modprobe supports two ways of passing parameter, and toybox modprobe seems to support one (modprobe command line). Could we also support reading from kernel command line? That…
-
```
Deprecated: mysql_escape_string(): This function is deprecated; use
mysql_real_escape_string() instead. in /virtual/catdogz/public_html/socks5.php
on line 94
Deprecated: mysql_pconnect(): The m…
-
```
Deprecated: mysql_escape_string(): This function is deprecated; use
mysql_real_escape_string() instead. in /virtual/catdogz/public_html/socks5.php
on line 94
Deprecated: mysql_pconnect(): The m…
-
```
Deprecated: mysql_escape_string(): This function is deprecated; use
mysql_real_escape_string() instead. in /virtual/catdogz/public_html/socks5.php
on line 94
Deprecated: mysql_pconnect(): The m…
-
Scriban seems to be missing Liquid functions such as 'escape' and 'newline_to_br'. I know there is eg 'html.escape', but when using ParseLiquid() compatibility mode, I think one would reasonably expec…
-
Hi,
in cost.php the user passes a variable named condition
https://github.com/dargmuesli/randomwinpicker/blob/869087e51d98716b88c3b6d40bf4b03639888f35/src/static/resources/dargmuesli/cost.php#L6
th…
-
The application uses the escape() function to escape user input before storing it in the at_home dictionary. However, this function is intended for escaping HTML content and may not be sufficient to p…
-
#### Checklist
- [ x] I checked other issues already, but found no answer/solution
- [x ] I checked the documentation and wiki, but found no answer/solution
- [ x] I am running the latest version…
andle updated
1 month ago