From 44b9b79814e06d5ad8e05e4c74353ebcb81bb7dd Mon Sep 17 00:00:00 2001
From: Mobb autofixer <git@mobb.ai>
Date: Fri, 29 Nov 2024 16:48:39 +0000
Subject: [PATCH] mobb fix commit: cccdd6fb-9bd0-4a7b-984e-725110ecd3df

---
 src/main/java/SQLInjectionExample.java | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/src/main/java/SQLInjectionExample.java b/src/main/java/SQLInjectionExample.java
index 903f009..fc02cc8 100644
--- a/src/main/java/SQLInjectionExample.java
+++ b/src/main/java/SQLInjectionExample.java
@@ -7,11 +7,12 @@ public static void main(String[] args) throws SQLException {
         // ó
         Connection con = DriverManager.getConnection("jdbc:mysql://localhost:3306/db", "root", "root");
         // ó
-        String query = "SELECT * FROM users WHERE username = '" + userInputA + "';";
+        String query = "SELECT * FROM users WHERE username = ?;";
         // ó
-        Statement stmt = con.createStatement();
+        PreparedStatement stmt = con.prepareStatement(query);
         // ó
-        ResultSet rs = stmt.executeQuery(query);
+        stmt.setString(1, userInputA);
+        ResultSet rs = stmt.executeQuery();
 
         while (rs.next()) {
             String username = rs.getString("username");