04.10.2018, 21:27
While the concept is very good and it reminds me of an ORM system, it has two major problems.
1) SQL Injection (Always escape any input by people. There is %q placeholder in `format` function)
2) Plain text passwords (Always hash + salt passwords)
1) SQL Injection (Always escape any input by people. There is %q placeholder in `format` function)
2) Plain text passwords (Always hash + salt passwords)