lib/Doctrine/DBAL · 6fdfcab2a0ca2063a4fd1b0ba7fa0988c14ef957 · Tomáš Trávníček / doctrine-dbal

Bertold von Dormilich authored Aug 18, 2017

Replaced the code examples for `set()` to show that the value parameter is not escaped and thus could pose an SQL injection vulnerability.

68990405

Name	Last commit	Last update
..
Cache		Loading commit data...
Connections		Loading commit data...
Driver		Loading commit data...
Event		Loading commit data...
Exception		Loading commit data...
Id		Loading commit data...
Logging		Loading commit data...
Platforms		Loading commit data...
Portability		Loading commit data...
Query		Loading commit data...
Schema		Loading commit data...
Sharding		Loading commit data...
Tools/Console		Loading commit data...
Types		Loading commit data...
Configuration.php		Loading commit data...
Connection.php		Loading commit data...
ConnectionException.php		Loading commit data...
DBALException.php		Loading commit data...
Driver.php		Loading commit data...
DriverManager.php		Loading commit data...
Events.php		Loading commit data...
LockMode.php		Loading commit data...
README.markdown		Loading commit data...
SQLParserUtils.php		Loading commit data...
SQLParserUtilsException.php		Loading commit data...
Statement.php		Loading commit data...
Version.php		Loading commit data...
VersionAwarePlatformDriver.php		Loading commit data...