You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
So, theres this this possibility of sending an "SQL Injection" statement on the search tool of datatables.
Since my google search gave me that diesel already does and "cleaning" on the statement, using sql_query must not be inside this cleaning scope.
Since, I'll market it as an issue. If you could help, it would be nice. Anyways, soon as possible I'll implement an function that cleans the statement from the incoming query.
I do not have that much know how on sql injection attacks and my tries resulted in nothing.
The text was updated successfully, but these errors were encountered:
So, theres this this possibility of sending an "SQL Injection" statement on the search tool of datatables.
Since my google search gave me that diesel already does and "cleaning" on the statement, using sql_query must not be inside this cleaning scope.
Since, I'll market it as an issue. If you could help, it would be nice. Anyways, soon as possible I'll implement an function that cleans the statement from the incoming query.
I do not have that much know how on sql injection attacks and my tries resulted in nothing.
The text was updated successfully, but these errors were encountered: