1 <p>The code creates an SQL prepared statement from a nonconstant String.
2 If unchecked, tainted data from a user is used in building this String, SQL injection could
3 be used to make the prepared statement do something unexpected and undesirable.
projects / sonarqube.git / blob