rizkytegar/TestController.ts

## TestController.ts
// Route yang rentan terhadap SQL injection
app.get('/users', (req, res) => {
  const username = req.query.username;
  const sql = `SELECT * FROM users WHERE username = '${username}'`;

  db.query(sql, (err, results) => {
    if (err) {
      console.error('Error executing query:', err);
      return res.status(500).send('Error executing query');
    }

    res.json(results);
  });
});
	// Route yang rentan terhadap SQL injection
	app.get('/users', (req, res) => {
	const username = req.query.username;
	const sql = `SELECT * FROM users WHERE username = '${username}'`;

	db.query(sql, (err, results) => {
	if (err) {
	console.error('Error executing query:', err);
	return res.status(500).send('Error executing query');
	}

	res.json(results);
	});
	});