copper-tone-tech/web-hosts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c7d6786039c731e540106d6b182756e68f237db5
web-hosts/domains/coppertone.tech/audit-reports/database-audit/sql-injection-20251123-080448.txt
Derek Williams c7d6786039 Add full web-hosts state
2025-12-26 13:38:04 +01:00

192 lines
28 KiB
Plaintext
Raw Blame History

# SQL Injection Analysis - 20251123-080448
== String concatenation in SQL queries (HIGH RISK) ==
None found
== String concatenation with + in queries ==
None found
== Raw SQL execution (potential risk) ==
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:186: if _, err := db.Exec(createTablesSQL); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:449: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:500: db.Exec("UPDATE forum_questions SET view_count = view_count + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:506: err = db.QueryRow(`SELECT id, title, content, author_id, author_name, tags, upvotes, downvotes,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:527: rows, err := db.Query(`SELECT id, question_id, content, author_id, author_name, upvotes, downvotes,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:582: err := db.QueryRow(`INSERT INTO forum_questions (title, content, author_id, author_name, tags)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:619: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:636: _, err = db.Exec(`UPDATE forum_questions SET title = $1, content = $2, tags = $3, updated_at = CURRENT_TIMESTAMP
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:663: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:674: _, err = db.Exec("DELETE FROM forum_questions WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:708: err = db.QueryRow("SELECT status FROM forum_questions WHERE id = $1", questionID).Scan(&status)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:731: err = db.QueryRow(`INSERT INTO forum_answers (question_id, content, author_id, author_name)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:741: db.Exec("UPDATE forum_questions SET answer_count = answer_count + 1, status = 'ANSWERED' WHERE id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:768: err = db.QueryRow("SELECT author_id FROM forum_answers WHERE id = $1", id).Scan(&authorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:785: _, err = db.Exec(`UPDATE forum_answers SET content = $1, updated_at = CURRENT_TIMESTAMP WHERE id = $2`,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:812: err = db.QueryRow("SELECT author_id, question_id FROM forum_answers WHERE id = $1", id).Scan(&authorID, &questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:823: _, err = db.Exec("DELETE FROM forum_answers WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:830: db.Exec("UPDATE forum_questions SET answer_count = answer_count - 1 WHERE id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:852: err = db.QueryRow("SELECT question_id FROM forum_answers WHERE id = $1", id).Scan(&questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:860: err = db.QueryRow("SELECT author_id FROM forum_questions WHERE id = $1", questionID).Scan(&questionAuthorID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:872: db.Exec("UPDATE forum_answers SET is_accepted = FALSE WHERE question_id = $1", questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:875: db.Exec("UPDATE forum_answers SET is_accepted = TRUE WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:876: db.Exec("UPDATE forum_questions SET accepted_answer_id = $1, status = 'ANSWERED' WHERE id = $2", id, questionID)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:896: _, err = db.Exec(`UPDATE forum_answers SET is_verified = TRUE, verified_by = $1,
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:936: err = db.QueryRow("SELECT vote_type FROM forum_votes WHERE user_id = $1 AND target_type = 'question' AND target_id = $2",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:941: db.Exec("INSERT INTO forum_votes (user_id, target_type, target_id, vote_type) VALUES ($1, 'question', $2, $3)",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:944: db.Exec("UPDATE forum_questions SET upvotes = upvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:946: db.Exec("UPDATE forum_questions SET downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:950: db.Exec("UPDATE forum_votes SET vote_type = $1 WHERE user_id = $2 AND target_type = 'question' AND target_id = $3",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:953: db.Exec("UPDATE forum_questions SET upvotes = upvotes + 1, downvotes = downvotes - 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:955: db.Exec("UPDATE forum_questions SET upvotes = upvotes - 1, downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:990: err = db.QueryRow("SELECT vote_type FROM forum_votes WHERE user_id = $1 AND target_type = 'answer' AND target_id = $2",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:995: db.Exec("INSERT INTO forum_votes (user_id, target_type, target_id, vote_type) VALUES ($1, 'answer', $2, $3)",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:998: db.Exec("UPDATE forum_answers SET upvotes = upvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1000: db.Exec("UPDATE forum_answers SET downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1004: db.Exec("UPDATE forum_votes SET vote_type = $1 WHERE user_id = $2 AND target_type = 'answer' AND target_id = $3",
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1007: db.Exec("UPDATE forum_answers SET upvotes = upvotes + 1, downvotes = downvotes - 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1009: db.Exec("UPDATE forum_answers SET upvotes = upvotes - 1, downvotes = downvotes + 1 WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/forum-service/main.go:1030: _, err = db.Exec("UPDATE forum_questions SET status = 'CLOSED', updated_at = CURRENT_TIMESTAMP WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:471: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:480: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:490: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:552: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:579: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:615: err := db.QueryRow(`SELECT client_id, status FROM invoices WHERE id = $1`, id).Scan(&existingClientID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:636: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:665: err := db.QueryRow(`SELECT status FROM invoices WHERE id = $1`, id).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:680: result, err := db.Exec("DELETE FROM invoices WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:742: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:751: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:764: err = db.QueryRow(`SELECT client_id FROM invoices WHERE id = $1`, invoiceID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:776: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:786: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:850: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:875: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:897: err = db.QueryRow(`SELECT client_id FROM invoices WHERE id = $1`, p.InvoiceID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:935: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:975: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1038: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1054: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1061: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1088: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/payment-service/main.go:1110: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:465: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:476: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:535: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:558: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:596: err := db.QueryRow("SELECT client_id FROM projects WHERE id = $1", id).Scan(&existingClientID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:620: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:647: err := db.QueryRow("SELECT client_id FROM projects WHERE id = $1", id).Scan(&existingClientID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:662: result, err := db.Exec("DELETE FROM projects WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:737: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:745: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:757: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, projectID).Scan(&ownerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:769: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:778: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:830: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:853: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:873: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, t.ProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:891: err := db.QueryRow(`SELECT project_id FROM tasks WHERE id = $1`, id).Scan(&existingProjectID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:903: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, existingProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:923: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:950: err := db.QueryRow(`SELECT project_id FROM tasks WHERE id = $1`, id).Scan(&existingProjectID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:962: err = db.QueryRow(`SELECT client_id FROM projects WHERE id = $1`, existingProjectID).Scan(&projectOwnerID)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:968: result, err := db.Exec("DELETE FROM tasks WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1028: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1036: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1080: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1104: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1132: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1159: result, err := db.Exec("DELETE FROM work_orders WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1214: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1269: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1291: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1330: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1356: _, err = db.Exec("DELETE FROM projects WHERE id = $1", id)
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1374: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1457: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1487: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/work-management-service/main.go:1501: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:394: err := db.QueryRow("SELECT COUNT(*) FROM users").Scan(&userCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:510: err := db.QueryRow("SELECT COUNT(*) FROM users").Scan(&userCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:602: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:652: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:720: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:745: _, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:796: err := db.QueryRow("SELECT user_id, is_primary_login FROM identities WHERE id = $1", req.IdentityID).Scan(&identityUserID, &isPrimary)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:813: err = db.QueryRow("SELECT COUNT(*) FROM identities WHERE user_id = $1", userID).Scan(&identityCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:827: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:840: result, err := db.Exec("DELETE FROM identities WHERE id = $1", req.IdentityID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:869: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:904: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:916: rows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", userID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:998: rows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", userID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1014: db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1150: rows, err := db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1179: roleRows, err := db.Query("SELECT role FROM user_roles WHERE user_id = $1", users[i].ID)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1247: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1264: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1276: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1292: err = db.QueryRow("SELECT COUNT(*) FROM user_roles WHERE user_id = $1", req.UserID).Scan(&roleCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1305: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1369: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1380: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1392: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1407: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1466: err := db.QueryRow("SELECT name FROM users WHERE id = $1", req.UserID).Scan(&userName)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1478: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1493: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1539: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1560: err = db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1576: err = db.QueryRow("SELECT COUNT(*) FROM user_roles WHERE user_id = $1", req.UserID).Scan(&roleCount)
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1585: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1598: _, err = db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1631: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/auth-service/main.go:1660: err = db.QueryRow("SELECT name FROM users WHERE id = $1", req.NewSuperuserID).Scan(&newUserName)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:186: if _, err := db.Exec(createTablesSQL); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:212: if _, err := db.Exec(migration); err != nil {
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:454: rows, err := db.Query(query, StatusPublished, BlogTypeSite)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:504: blog, err := scanBlog(db.QueryRow(query, slug, StatusPublished, BlogTypeSite))
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:559: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:592: rows, err := db.Query(query, StatusPendingReview, BlogTypeSite)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:661: err := db.QueryRow(query, req.Slug, req.Title, author, userID, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, status, BlogTypeSite).
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:704: err := db.QueryRow("SELECT author_id, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:751: result, err := db.Exec(query, req.Title, req.Author, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, newStatus, slug)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:779: err := db.QueryRow("SELECT author_id, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:795: _, err = db.Exec("UPDATE blog_posts SET status = $1, review_notes = '', updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:822: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:854: _, err = db.Exec(`UPDATE blog_posts SET status = $1, reviewed_by = $2, reviewed_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:876: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:888: _, err = db.Exec(`UPDATE blog_posts SET status = $1, published_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:910: err := db.QueryRow("SELECT status FROM blog_posts WHERE slug = $1", slug).Scan(&existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:921: _, err = db.Exec("UPDATE blog_posts SET status = $1, updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:940: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1", slug)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:971: rows, err := db.Query(query, StatusPublished, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1021: blog, err := scanBlog(db.QueryRow(query, slug, StatusPublished, BlogTypeUser))
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1049: rows, err := db.Query(query, userID, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1129: err := db.QueryRow(query, communitySlug, req.Title, author, userID, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, StatusPublished, BlogTypeUser).
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1174: err := db.QueryRow("SELECT author_id, blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1215: result, err := db.Exec(query, req.Title, req.Author, date, tagsToPostgres(req.Tags), req.ShortDescription, req.Content, slug, userID)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1247: err := db.QueryRow("SELECT author_id, blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingAuthorID, &existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1265: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1 AND author_id = $2 AND blog_type = $3", slug, userID, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1301: rows, err := db.Query(query, args...)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1338: err := db.QueryRow("SELECT blog_type, status FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingStatus)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1355: _, err = db.Exec(`UPDATE blog_posts SET blog_type = $1, promoted_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1376: result, err := db.Exec("DELETE FROM blog_posts WHERE slug = $1 AND blog_type = $2", slug, BlogTypeUser)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1404: err := db.QueryRow("SELECT blog_type FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1415: _, err = db.Exec("UPDATE blog_posts SET status = $1, updated_at = CURRENT_TIMESTAMP WHERE slug = $2",
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1439: err := db.QueryRow("SELECT blog_type, verified FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingVerified)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1455: _, err = db.Exec(`UPDATE blog_posts SET verified = TRUE, verified_by = $1, verified_at = CURRENT_TIMESTAMP,
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1479: err := db.QueryRow("SELECT blog_type, verified FROM blog_posts WHERE slug = $1", slug).Scan(&existingBlogType, &existingVerified)
/home/administrator/projects/coppertone.tech/backend/functions/blog-service/main.go:1495: _, err = db.Exec(`UPDATE blog_posts SET verified = FALSE, verified_by = NULL, verified_at = NULL,
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:144: _, err := db.Exec(migration)
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:254: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:289: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:296: rows, err = db.Query(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:361: err := db.QueryRow(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:403: result, err := db.Exec(`
/home/administrator/projects/coppertone.tech/backend/functions/contact-service/main.go:423: result, err := db.Exec(`DELETE FROM contact_submissions WHERE id = $1`, id)
== Parameterized queries (GOOD - verify all use , placeholders) ==
194
parameterized query usages found
Reference in New Issue View Git Blame Copy Permalink