Why is this an issue?
In include/parser/parser.hpp:142-168:
row.push_back(parse_expression());
} while (match(TokenType::Comma));
stmt->add_row(std::move(row));
// No validation row.size() matches column count!
INSERT doesn't check value count matches schema.
What is causing it?
Missing validation in parser.
How can it be solved?
Validate row size against table column count.
Category
Severity
Why is this an issue?
In
include/parser/parser.hpp:142-168:INSERT doesn't check value count matches schema.
What is causing it?
Missing validation in parser.
How can it be solved?
Validate row size against table column count.
Category
Severity