Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SQL injection vulnerability #87

Closed
zhzy0077 opened this issue Aug 2, 2017 · 0 comments
Closed

SQL injection vulnerability #87

zhzy0077 opened this issue Aug 2, 2017 · 0 comments
Assignees
@yungez
Labels
bug

Comments

@zhzy0077
Copy link
Contributor

zhzy0077 commented Aug 2, 2017
edited

Line 191 of DocumentDbTemplate class

final String query = "SELECT * FROM root r WHERE r.id='" + dbName + "'";```

Is it vulnerable of SQL injection?
@yungez yungez self-assigned this Aug 2, 2017
yungez pushed a commit that referenced this issue Aug 10, 2017
@yungezz
fix issue #87
28d9f38
@yungez yungez added the bug label Aug 10, 2017
@yungez yungez mentioned this issue Aug 10, 2017
Merged
yungez pushed a commit that referenced this issue Aug 14, 2017
@yungezz
enable appveyor (#110)
495f86d 
* enable appveyor

* add mis-delete lines

* move cobertura to after_build

* fix typo

* upload cobertura result to codecov

* use codecov

* test codecov

* test appveyor after_build

* test codecov option

* test again

* fix issue #87

* fix findbugs bug

* remove upload in appveyor

* fix link in readme

* upload test result

* remove codecov uploading from travis
@yungez yungez closed this as completed Aug 14, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@yungez yungez

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zhzy0077 @yungez