From f283279dd599b7c1a77e12dd6ebbc28684e24ee1 Mon Sep 17 00:00:00 2001
From: 0xdbe <23268141+0xdbe@users.noreply.github.com>
Date: Sun, 20 Jun 2021 00:23:47 +0200
Subject: [PATCH] update readme

---
 README.md | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git a/README.md b/README.md
index 471c4dc..5a7a327 100644
--- a/README.md
+++ b/README.md
@@ -1,4 +1,4 @@
-# Hands-on Express SQLi
+# SQL injection with Express and sqlite
 
 This application is a demonstration prototype just to show how to perform SQLi attack.
 
@@ -6,7 +6,7 @@ This application is a demonstration prototype just to show how to perform SQLi a
 
 ### Deploy on heroku
 
-[![Deploy](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy?template=https://github.com/0xdbe/Hands-on-Express-SQLi)
+[![Deploy](https://www.herokucdn.com/deploy/button.svg)](https://heroku.com/deploy?template=https://github.com/0xdbe-appsec/sqli-express-sqlite)
 
 ### Deploy on your host
 
@@ -50,4 +50,8 @@ Open http://localhost:3000/ and log in with:
 SELECT name FROM user where username = 'admin' --' and password = 'a'
 ```
 
-You are now log in as "Admin",
+You are now log in as "Admin"
+
+### Fix it
+
+use prepared statement