Security enhancement: Users should be created and edited via the ORM in UserEditor.php #7071
Labels
enhancement
good first issue
Indicates a good issue for first-time contributors
php
Pull requests that update Php code
Security
Is your feature request related to a problem? Please describe.
UserEditor.php still manually crafts a SQL string for data insertion. Using the ORM enforces OOP and implicitly uses prepared statements, which prevents SQL injection attacks
Describe the solution you'd like
Use the ORM in UserEditor.php
The text was updated successfully, but these errors were encountered: