copper-tone-tech/web-hosts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
web-hosts/domains/coppertone.tech/audit-reports/database-audit/sql-injection-20251123-092506.txt
Derek Williams c7d6786039 Add full web-hosts state
2025-12-26 13:38:04 +01:00

192 lines
28 KiB
Plaintext
Raw Permalink Blame History

# SQL Injection Analysis - 20251123-092506
== String concatenation in SQL queries (HIGH RISK) ==
None found
== String concatenation with + in queries ==
None found
== Raw SQL execution (potential risk) ==
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:186: if _, err := db.Exec(createTablesSQL); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:453: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:504: db.Exec("UPDATE forum_questions SET view_count = view_count + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:510: err = db.QueryRow(`SELECT id, title, content, author_id, author_name, tags, upvotes, downvotes,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:531: rows, err := db.Query(`SELECT id, question_id, content, author_id, author_name, upvotes, downvotes,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:586: err := db.QueryRow(`INSERT INTO forum_questions (title, content, author_id, author_name, tags)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:623: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:640: _, err = db.Exec(`UPDATE forum_questions SET title = $1, content = $2, tags = $3, updated_at = CURRENT_TIMESTAMP
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:667: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:678: _, err = db.Exec("DELETE FROM forum_questions WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:712: err = db.QueryRow("SELECT status FROM forum_questions WHERE id = $1", questionID).Scan(&status)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:735: err = db.QueryRow(`INSERT INTO forum_answers (question_id, content, author_id, author_name)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:745: db.Exec("UPDATE forum_questions SET answer_count = answer_count + 1, status = 'ANSWERED' WHERE id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:772: err = db.QueryRow("SELECT author_id FROM forum_answers WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:789: _, err = db.Exec(`UPDATE forum_answers SET content = $1, updated_at = CURRENT_TIMESTAMP WHERE id = $2`,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:816: err = db.QueryRow("SELECT author_id, question_id FROM forum_answers WHERE id = $1", id).Scan(&authorID, &questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:827: _, err = db.Exec("DELETE FROM forum_answers WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:834: db.Exec("UPDATE forum_questions SET answer_count = answer_count - 1 WHERE id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:856: err = db.QueryRow("SELECT question_id FROM forum_answers WHERE id = $1", id).Scan(&questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:864: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", questionID).Scan(&questionAuthorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:876: db.Exec("UPDATE forum_answers SET is_accepted = FALSE WHERE question_id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:879: db.Exec("UPDATE forum_answers SET is_accepted = TRUE WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:880: db.Exec("UPDATE forum_questions SET accepted_answer_id = $1, status = 'ANSWERED' WHERE id = $2", id, questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:900: _, err = db.Exec(`UPDATE forum_answers SET is_verified = TRUE, verified_by = $1,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:940: err = db.QueryRow("SELECT vote_type FROM forum_votes WHERE user_id = $1 AND target_type = 'question' AND target_id = $2",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:945: db.Exec("INSERT INTO forum_votes (user_id, target_type, target_id, vote_type) VALUES ($1, 'question', $2, $3)",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:948: db.Exec("UPDATE forum_questions SET upvotes = upvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:950: db.Exec("UPDATE forum_questions SET downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:954: db.Exec("UPDATE forum_votes SET vote_type = $1 WHERE user_id = $2 AND target_type = 'question' AND target_id = $3",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:957: db.Exec("UPDATE forum_questions SET upvotes = upvotes + 1, downvotes = downvotes - 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:959: db.Exec("UPDATE forum_questions SET upvotes = upvotes - 1, downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:994: err = db.QueryRow("SELECT vote_type FROM forum_votes WHERE user_id = $1 AND target_type = 'answer' AND target_id = $2",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:999: db.Exec("INSERT INTO forum_votes (user_id, target_type, target_id, vote_type) VALUES ($1, 'answer', $2, $3)",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1002: db.Exec("UPDATE forum_answers SET upvotes = upvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1004: db.Exec("UPDATE forum_answers SET downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1008: db.Exec("UPDATE forum_votes SET vote_type = $1 WHERE user_id = $2 AND target_type = 'answer' AND target_id = $3",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1011: db.Exec("UPDATE forum_answers SET upvotes = upvotes + 1, downvotes = downvotes - 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1013: db.Exec("UPDATE forum_answers SET upvotes = upvotes - 1, downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1034: _, err = db.Exec("UPDATE forum_questions SET status = 'CLOSED', updated_at = CURRENT_TIMESTAMP WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:481: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:490: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:500: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:562: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:589: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:625: err := db.QueryRow(`SELECT client_id, status FROM invoices WHERE id = $1`, id).Scan(&existingClientID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:646: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:675: err := db.QueryRow(`SELECT status FROM invoices WHERE id = $1`, id).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:690: result, err := db.Exec("DELETE FROM invoices WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:752: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:761: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:774: err = db.QueryRow(`SELECT client_id FROM invoices WHERE id = $1`, invoiceID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:786: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:796: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:860: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:885: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:907: err = db.QueryRow(`SELECT client_id FROM invoices WHERE id = $1`, p.InvoiceID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:945: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:985: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1048: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1064: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1071: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1098: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1120: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:475: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:486: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:545: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:568: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:606: err := db.QueryRow("SELECT client_id FROM projects WHERE id = $1", id).Scan(&existingClientID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:630: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:657: err := db.QueryRow("SELECT client_id FROM projects WHERE id = $1", id).Scan(&existingClientID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:672: result, err := db.Exec("DELETE FROM projects WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:747: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:755: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:767: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, projectID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:779: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:788: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:840: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:863: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:883: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, t.ProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:901: err := db.QueryRow(`SELECT project_id FROM tasks WHERE id = $1`, id).Scan(&existingProjectID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:913: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, existingProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:933: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:960: err := db.QueryRow(`SELECT project_id FROM tasks WHERE id = $1`, id).Scan(&existingProjectID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:972: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, existingProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:978: result, err := db.Exec("DELETE FROM tasks WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1038: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1046: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1090: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1114: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1142: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1169: result, err := db.Exec("DELETE FROM work_orders WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1224: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1279: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1301: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1340: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1366: _, err = db.Exec("DELETE FROM projects WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1384: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1467: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1497: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1511: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:542: err := db.QueryRow("SELECT COUNT(*) FROM users").Scan(&userCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:666: err := db.QueryRow("SELECT COUNT(*) FROM users").Scan(&userCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:768: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:838: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:912: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:937: _, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:988: err := db.QueryRow("SELECT user_id, is_primary_login FROM identities WHERE id = $1", req.IdentityID).Scan(&identityUserID, &isPrimary)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1005: err = db.QueryRow("SELECT COUNT(*) FROM identities WHERE user_id = $1", userID).Scan(&identityCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1019: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1032: result, err := db.Exec("DELETE FROM identities WHERE id = $1", req.IdentityID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1061: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1096: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1108: rows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", userID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1190: rows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", userID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1206: db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1342: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1371: roleRows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", users[i].ID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1439: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1456: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1468: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1484: err = db.QueryRow("SELECT COUNT(*) FROM user_roles WHERE user_id = $1", req.UserID).Scan(&roleCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1497: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1561: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1572: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1584: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1599: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1658: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1670: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1685: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1731: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1752: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1768: err = db.QueryRow("SELECT COUNT(*) FROM user_roles WHERE user_id = $1", req.UserID).Scan(&roleCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1777: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1790: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1823: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1852: err = db.QueryRow("SELECT name FROM users WHERE id = $1", req.NewSuperuserID).Scan(&newUserName)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:186: if _, err := db.Exec(createTablesSQL); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:212: if _, err := db.Exec(migration); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:458: rows, err := db.Query(query, StatusPublished, BlogTypeSite)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:508: blog, err := scanBlog(db.QueryRow(query, slug, StatusPublished, BlogTypeSite))
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:563: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:596: rows, err := db.Query(query, StatusPendingReview, BlogTypeSite)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:665: err := db.QueryRow(query, req.Slug, req.Title, author, userID, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, status, BlogTypeSite).
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:708: err := db.QueryRow("SELECT author_id, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:755: result, err := db.Exec(query, req.Title, req.Author, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, newStatus, slug)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:783: err := db.QueryRow("SELECT author_id, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:799: _, err = db.Exec("UPDATE blog_posts SET status = $1, review_notes = '', updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:826: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:858: _, err = db.Exec(`UPDATE blog_posts SET status = $1, reviewed_by = $2, reviewed_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:880: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:892: _, err = db.Exec(`UPDATE blog_posts SET status = $1, published_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:914: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:925: _, err = db.Exec("UPDATE blog_posts SET status = $1, updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:944: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1", slug)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:975: rows, err := db.Query(query, StatusPublished, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1025: blog, err := scanBlog(db.QueryRow(query, slug, StatusPublished, BlogTypeUser))
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1053: rows, err := db.Query(query, userID, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1133: err := db.QueryRow(query, communitySlug, req.Title, author, userID, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, StatusPublished, BlogTypeUser).
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1178: err := db.QueryRow("SELECT author_id, blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1219: result, err := db.Exec(query, req.Title, req.Author, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, slug, userID)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1251: err := db.QueryRow("SELECT author_id, blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1269: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1 AND author_id = $2 AND blog_type = $3", slug, userID, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1305: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1342: err := db.QueryRow("SELECT blog_type, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1359: _, err = db.Exec(`UPDATE blog_posts SET blog_type = $1, promoted_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1380: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1 AND blog_type = $2", slug, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1408: err := db.QueryRow("SELECT blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1419: _, err = db.Exec("UPDATE blog_posts SET status = $1, updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1443: err := db.QueryRow("SELECT blog_type, verified FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingVerified)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1459: _, err = db.Exec(`UPDATE blog_posts SET verified = TRUE, verified_by = $1, verified_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1483: err := db.QueryRow("SELECT blog_type, verified FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingVerified)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1499: _, err = db.Exec(`UPDATE blog_posts SET verified = FALSE, verified_by = NULL, verified_at = NULL,
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:147: _, err := db.Exec(migration)
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:315: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:350: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:357: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:422: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:464: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:484: result, err := db.Exec(`DELETE FROM contact_submissions WHERE id = $1`, id)
== Parameterized queries (GOOD - verify all use , placeholders) ==
194
parameterized query usages found
Reference in New Issue View Git Blame Copy Permalink