eslint-plugin-weblint-security
Version:
ESLint rules for enhanced security - even for React and Node.js!
22 lines (16 loc) • 586 B
JavaScript
const mysql = require('mysql');
const readline = require('readline-sync');
// Create database connection with mySQL
const dbConnection = mysql.createConnection({
host: "localhost",
user: "admin",
password: "password",
database: "my_db"
});
// Some user input - SQL injection input example: 42 OR 1=1
let phone = readline.question("What is your phone number?\n");
const sql = `SELECT * FROM users where tlf = ?`;
// Connect to the database
dbConnection.connect();
// Execute query
dbConnection.query(sql, [phone], (err, result) => console.log(result));