So during the summer I worked on a large enterprisey Java program. (Singleton pattern ahoy!) One of the annoying things (besides massive code duplication) was it used database queries that naively appended user input (particularly search queries) onto selects. And from my web background, I knew that SQL injection makes wiping the table trivial. Or […]