Buffer overflows

Question

Opened this issue 15 years ago · 1 comments

E.g.:

lib/template.c, line 35-36.
lib/response.c, line 39.
models/user.c, line 27, 33, 52, 57, 62.

...

Check your strings.

Also, there's a lot of unescaped SQL. Maybe you shouldn't write this in C? :-)

Answer 1 · 2010-07-17T09:42:14.000Z

All of the SQL is escaped.