Skip to content
Permalink
Browse files Browse the repository at this point in the history
Removed potential SOQL injection vulnerability from orderDirection pa…
…rameter in SObjectService.BuildSoqlString
  • Loading branch information
scottbcovert committed Jun 20, 2016
1 parent 1e58adb commit db03ac5
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/classes/SObjectService.cls
Expand Up @@ -144,7 +144,7 @@ public with sharing class SObjectService {
soql += ' ' + DEFAULT_DIR_ORDER;
}
else{
soql += ' ' + orderDirection.toUpperCase();
soql += ' ' + String.escapeSingleQuotes(orderDirection.toUpperCase());
}
}
if (limitTo!=null && limitTo>0){
Expand Down

0 comments on commit db03ac5

Please sign in to comment.