Beware of SQL injection with Spring Boot and Flyway
So this is a hard to accomplish exploit, and is really only accomplishable by first exploiting another exploit first, or by an employee with some level of trusted access, though this employee might not normally have actual database access. I do believe you should be aware of it, as it leaves open an avenue you may not be thinking of.
A sample application So the first thing we need is an application that uses Flyway, let’s just use the Spring Boot Flyway Sample.