🐛 Bad query parameters interpolation - Githubissues

cycle / database

Database Abstraction Layer, Schema Introspection, Schema Generation, Query Builders

MIT License

54 stars 22 forks source link

🐛 Bad query parameters interpolation #57

Closed roxblnfk closed 2 years ago

roxblnfk commented 2 years ago

No duplicates 🥲.

[X] I have searched for a similar issue in our bug tracker and didn't find any solutions.

Database

No response

What happened?

This part of code can work incorrectly

$query = str_replace(
    [':' . $index, $index],
    self::resolveValue($parameter),
    $query
);

All named parameters in a query parameter list should be prenormalized

Version

database 2.0
PHP 8.1