rajapandi1234 · rajapandi1234 · Nov 27, 2024
diff --git a/aa.py b/aa.py
@@ -0,0 +1,21 @@
+import sqlite3
+from flask import Flask, request
+
+app = Flask(__name__)
+
+@app.route('/search')
+def search():
+    # Get the user input from the query parameter
+    query = request.args.get('query', '')
+
+    # Vulnerable: User input is directly concatenated into the SQL query
+    connection = sqlite3.connect('example.db')
+    cursor = connection.cursor()
+    cursor.execute(f"SELECT * FROM users WHERE name = '{query}'")  # SQL injection vulnerability
@@ -13,3 +13,3 @@
    cursor = connection.cursor()
-    cursor.execute(f"SELECT * FROM users WHERE name = '{query}'")  # SQL injection vulnerability
+    cursor.execute("SELECT * FROM users WHERE name = ?", (query,))  # Use parameterized query to prevent SQL injection
    results = cursor.fetchall()
@@ -13,3 +13,3 @@
    cursor = connection.cursor()
-    cursor.execute(f"SELECT * FROM users WHERE name = '{query}'")  # SQL injection vulnerability
+    cursor.execute("SELECT * FROM users WHERE name = ?", (query,))  # Use parameterized query to prevent SQL injection
    results = cursor.fetchall()
+    results = cursor.fetchall()
+    connection.close()
+
+    return str(results)
+
+if __name__ == '__main__':
+    app.run(debug=True)
@@ -20,2 +20,4 @@
 if __name__ == '__main__':
-    app.run(debug=True)
+    import os
+    debug_mode = os.getenv('FLASK_DEBUG', 'False').lower() in ['true', '1', 't']
+    app.run(debug=debug_mode)
@@ -20,2 +20,4 @@
 if __name__ == '__main__':
-    app.run(debug=True)
+    import os
+    debug_mode = os.getenv('FLASK_DEBUG', 'False').lower() in ['true', '1', 't']
+    app.run(debug=debug_mode)