id	summary	reporter	owner	description	type	status	priority	milestone	component	version	resolution	keywords	cc
290	Add bound parameter support to repository SQLite DB class	dstillman	dstillman	"The repository currently has no SQL injection protection. Needless to say, this is a very bad thing.

Add bound parameter support to the DB class and use it, since addslashes() is useless with SQL92."	defect	closed	critical		repository		fixed