collect test metrics

yogeshboddu · May 29, 2024 · 4d6171d · 4d6171d
1 parent 9f181b2
commit 4d6171d
Showing 1 changed file with 21 additions and 0 deletions.
diff --git a/CalculatorApp.Console/Calculator.cs b/CalculatorApp.Console/Calculator.cs
@@ -39,6 +39,27 @@ public int Reminder(int a, int b)
             return a % b;
         }
 
+        // Method with SQL injection vulnerability
+        public void ConnectToDatabase(string userInput)
+        {
+            string connectionString = "Server=myServerAddress;Database=myDataBase;User Id=myUsername;Password=myPassword;";
+
+            // Create a SQL query using the user input directly
+            string query = $"SELECT * FROM Users WHERE Username = '{userInput}'";
+
+            using (SqlConnection connection = new SqlConnection(connectionString))
+            {
+                SqlCommand command = new SqlCommand(query, connection);
+                connection.Open();
+
+                SqlDataReader reader = command.ExecuteReader();
+                while (reader.Read())
+                {
+                    Console.WriteLine($"User: {reader["Username"]}, Email: {reader["Email"]}");
+                }
+            }
+        }
+
         // Method with hardcoded credentials
         public void ConnectToDatabase()
         {