Author: oheger Date: Sun Jan 20 11:54:49 2008 New Revision: 613663 URL: http://svn.apache.org/viewvc?rev=613663&view=rev Log: CONFIGURATION-304: Applied patch from hasan dot diwan at gmail dot com containing a note about SQL Injection also to configuration2 branch
Modified: commons/proper/configuration/branches/configuration2_experimental/src/main/java/org/apache/commons/configuration2/DatabaseConfiguration.java Modified: commons/proper/configuration/branches/configuration2_experimental/src/main/java/org/apache/commons/configuration2/DatabaseConfiguration.java URL: http://svn.apache.org/viewvc/commons/proper/configuration/branches/configuration2_experimental/src/main/java/org/apache/commons/configuration2/DatabaseConfiguration.java?rev=613663&r1=613662&r2=613663&view=diff ============================================================================== --- commons/proper/configuration/branches/configuration2_experimental/src/main/java/org/apache/commons/configuration2/DatabaseConfiguration.java (original) +++ commons/proper/configuration/branches/configuration2_experimental/src/main/java/org/apache/commons/configuration2/DatabaseConfiguration.java Sun Jan 20 11:54:49 2008 @@ -74,6 +74,7 @@ * Configuration config2 = new DatabaseConfiguration(datasource, "myconfigs", "name", "key", "value", "config2"); * String value2 = conf.getString("key2"); * </pre> + * <h1>Note: Like JDBC itself, protection against SQL injection is left to the user.</h1> * * @since 1.0 *