Minor bug in detection of unsafe query

25 posts
gemal's profile image gemal posted 4 years ago in General Permalink

I get the "Run unsafe queries without a WHERE clause" if I run:

UPDATE test SET image = '<svg fill-1{fill:#474747;}' WHERE id = 11;

Minor bug

Using Version 11.0.0.6115 (64 Bit)

10361 posts
ansgar's profile image ansgar posted 4 years ago Permalink

Well that detection is quite dumb, it ends its analyzed code at the semicolon within that svg string. That's probably the reason why it can be disabled :)

Please login to leave a reply, or register at first.