hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-02-23 10:23:41 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0942945fa1872075f5fc37474628ca0ff125bfbe
codeql/javascript/ql/test/query-tests/Security/CWE-089/local-threat-source/test.js
Rasmus Wriedt Larsen 1726287bf4 JS: Add e2e threat-model test
2024-10-25 15:03:44 +02:00

10 lines
300 B
JavaScript
Raw Blame History

const mysql = require('mysql');
const pool = mysql.createPool(getConfig());
let temp = process.env['foo'];
pool.getConnection(function(err, connection) {
connection.query({
sql: 'SELECT * FROM `books` WHERE `author` = ' + temp, // NOT OK
}, function(error, results, fields) {});
});
Reference in New Issue View Git Blame Copy Permalink