psiinon · CMaheshBL · Nov 24, 2021 · Nov 24, 2021 · Nov 24, 2021 · Nov 24, 2021
diff --git a/README.md b/README.md
@@ -1,3 +1,5 @@
+CxFlowMasterPush-Test11
+
 The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
 
 > ### Please note that The BodgeIt Store is no longer being worked on

diff --git a/root/basket.jsp b/root/basket.jsp
@@ -4,7 +4,7 @@
 <%@ page import="java.math.*" %>
 <%@ page import="java.text.*" %>
 <%@ page import="java.util.*" %>
-
+<%@ page import="java.sql.PreparedStatement" %>
 <%@ include file="/dbconnection.jspf" %>
 
 <script type="text/javascript">
@@ -50,9 +50,14 @@ function decQuantity (prodid) {
 		// Dont need to do anything else
 
 		// Well, apart from checking to see if they've accessed someone elses basket ;)
-		Statement stmt = conn.createStatement();
-		try {
-			ResultSet rs = stmt.executeQuery("SELECT * FROM Baskets WHERE basketid = " + basketId);
+		//Statement stmt = conn.createStatement();
+        //Security Fix
+        PreparedStatement preparedStatement = con.prepareStatement(sql);
+        try {
+            //ResultSet rs = stmt.executeQuery("SELECT * FROM Baskets WHERE basketid = " + basketId);
+            String sql = "SELECT * FROM Baskets WHERE basketid =?");
+            preparedStatement.setString(1, basketId);
+            ResetSet rs = preparedStatement.executeQuery();
 			rs.next();
 			String bUserId = "" + rs.getInt("userid");
 			if ((userid == null && ! bUserId.equals("0")) || (userid != null && userid.equals(bUserId))) {