Fixed
Details
Details
Assignee
Thiago Rocha Camargo
Thiago Rocha CamargoReporter
Thiago Rocha Camargo
Thiago Rocha CamargoOriginal estimate
4h
Time tracking
No time logged4h remaining
Components
Fix versions
Priority
Created November 10, 2008 at 8:00 PM
Updated November 14, 2008 at 2:35 PM
Resolved November 14, 2008 at 2:35 PM
CallLogDAO in SIP Plugin is using prepared Statements.
But still inserting SQL Query values in the initialization String.
The values MUST be inserted in the prepared Statement via PreparedStatement Instance to prevent SQL Injection.