[Feature] SQL Injection Vulnerability and Error Handling in get_user Function

Anupkjha2601 / food-recipes-website

here i created a food store web app named food Recipe helps the customer to find good food in cheap rates and genuine foods. https://delightful-beach-00b073d10.1.azurestaticapps.net

https://anupkjha2601.github.io/food-recipes-website/

MIT License

76 stars 164 forks source link

[Feature] SQL Injection Vulnerability and Error Handling in get_user Function #758

Open tamannaaaaa opened 1 year ago

tamannaaaaa commented 1 year ago

Description

The get_user function in the current code is susceptible to SQL injection attacks due to the direct inclusion of the id value from the data dictionary into the SQL query string. Additionally, there is no proper error handling for potential exceptions that may occur during the database query.

Screenshots

No response

Checklist

[X] I have checked the existing issues
[X] I have read the Contributing Guidelines
[X] I am willing to work on this issue (optional)
[X] I am a GSSoC'23 contributor

github-actions[bot] commented 1 year ago

Thanks for creating this issue, @tamannaaaaa!

🚀 We really appreciate your contribution. Before we proceed, please make sure to read our Contributing Guidelines to understand the project's requirements and best practices.

🕵️‍♂️ Once you've reviewed the guidelines, please wait until one of our team members reviews the issue and provides further feedback.

🙏 Thanks again for your help, and we look forward to your valuable contributions! Happy coding! 😄

github-actions[bot] commented 1 year ago

To reduce notifications, issues are locked. Your issue will be unlocked when we add the label, gssoc23.