P1 - Injection (SQL)
SQL query uses unsanitized user input.
Query:
SELECT id, name, price FROM products WHERE id = 1
Result
[
{
"id": 1,
"name": "Widget",
"price": 9.99
}
]
SQL query uses unsanitized user input.
Query:
SELECT id, name, price FROM products WHERE id = 1
[
{
"id": 1,
"name": "Widget",
"price": 9.99
}
]