Security Issue : The code is Prone to SQL Injections

Nandini80 / Pill-Share

Pill Share is your go-to platform for donating unused medicine and connecting with sellers for free pickups. Give your surplus medicines a purpose by easily sharing them with those in need. Streamlined, altruistic, and convenient – Pill Share makes healthcare accessible to all.

4 stars 10 forks source link

Security Issue : The code is Prone to SQL Injections #26

Closed jiveshkalra closed 6 months ago

jiveshkalra commented 6 months ago

The Mysql queries are not secure and anyone can inject malicious code to the backend server

Nandini80 commented 6 months ago

How will you resolve this issue?

jiveshkalra commented 6 months ago

Wait nevermind mb mb, I thought you have to use the connection.escape() function to escape the strings and prevent the injections but with new updates of mysql its done internally so i guess there is no need for this change