Is Sqlite3 vulnerable to any kind of injections? If yes how can i prevent them
Ahhh, you may have heard of sql injections, basically when you’re performing a command like
SELECT * FROM STUFF WHERE USERNAME=<user data> AND PASSWORD=<user data>
^ may or may not be an actual command
the user can then craft a specific string to end that statement early and create new statements after that. The usual way to prevent this I believe is escaping.
Sqlite3 uses the sql query language so it is vulnerable to sql injections
You should look up “Prevent SQL injections in SQLite with (language you are using)”
It’s worth noting that there’s nothing that’s entirely safe. “The most secure computer is a computer with no inputs”, what you can try to do is to take as much measures to prevent exploits from happening, try looking up “SQLite database security”, I believe there are measures like encrypting the database(in case someone gets fs access to your app but can’t access .env).
This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.