Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Prevent SQL injection #2

Open
yopox opened this issue Sep 4, 2019 · 0 comments
Open

Prevent SQL injection #2

yopox opened this issue Sep 4, 2019 · 0 comments
Labels
help wanted Extra attention is needed vulnerability Something can be attacked

Comments

@yopox
Copy link
Contributor

yopox commented Sep 4, 2019
edited

In database/index.js, various functions build SQL requests with user input.
This could lead to classic SQL injection attacks.

This issue is not a huge problem for now as the project is meant to be used by trusted people in a fablab with few coding skills.

If you want to setup this project, it is advised to rewrite index.js files anyway !
@yopox yopox added vulnerability Something can be attacked help wanted Extra attention is needed labels Sep 4, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
help wanted Extra attention is needed vulnerability Something can be attacked
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@yopox