[Nullify] Fix for CVE-01HX8MRPBAXNB9566W87KAK6NM: Prevent SQL Injection in Java

nalbion / WebGoat

WebGoat is a deliberately insecure application

https://owasp.org/www-project-webgoat/

Other

0 stars 0 forks source link

Open nalbion-nullify[bot] opened 5 months ago

nalbion-nullify[bot] commented 5 months ago

Updated vulnerable SQL query logic in SqlInjectionLesson8.java to use PreparedStatement instead of Statement.\n- This change mitigates the risk related to CWE-89 - SQL Injection by avoiding direct inclusion of user inputs in SQL statements.

Sorry, I was unable to fix the vulnerability.