The search songs/artists option is currently not safe : SQL injection is possible.
Search may be improved (accent incensitive, partial words, missing letters...).
SQL Injection fixes :
remove all special caracters from query before fetching : could that pose problem if a song is named with special caracters ?
I forgot to keep this updated but I applied a fix for the query input, all special characters are removed before reaching the database.
Search improvement yet to come.
The search songs/artists option is currently not safe : SQL injection is possible. Search may be improved (accent incensitive, partial words, missing letters...).
SQL Injection fixes :
Search improvements :