Title: SQL Injection
Last modified: September 5, 2022

---

# SQL Injection

 *  Resolved [danushkaj91](https://wordpress.org/support/users/danushkaj91/)
 * (@danushkaj91)
 * [3 years, 9 months ago](https://wordpress.org/support/topic/sql-injection-27/)
 * Hi,
 * Thanks for the great plugin.
 * We’ve had some crazy amount of CPU spikes recently and when I checked the Relevanssi
   log, I see a lot of these queries. Does Relevanssi not sanitize user inputs?
 * Screenshot: [https://i.postimg.cc/VLfLFQFL/rel.png](https://i.postimg.cc/VLfLFQFL/rel.png)
 * Thanks
 * 346694 unicorn’)/**/and/**/1215=cast((chr(113)||chr(120)||chr(120)||chr(122)|
   |chr(113))||(select/**/(case/**/when/**/(1215=1215)/**/then/**/1/**/else/**/0/**/
   end))::text||(chr(113)||chr(107)||chr(106)||chr(1 1246 8/29/2022 3:33 0 5.183.253.93
   
   346695 unicorn’/**/and/**/1215=cast((chr(113)||chr(120)||chr(120)||chr(122)||
   chr(113))||(select/**/(case/**/when/**/(1215=1215)/**/then/**/1/**/else/**/0/**/
   end))::text||(chr(113)||chr(107)||chr(106)||chr(11 1246 8/29/2022 3:33 0 5.183.253.93

Viewing 2 replies - 1 through 2 (of 2 total)

 *  Plugin Author [Mikko Saari](https://wordpress.org/support/users/msaari/)
 * (@msaari)
 * [3 years, 9 months ago](https://wordpress.org/support/topic/sql-injection-27/#post-15978849)
 * Yes, Relevanssi sanitizes all user inputs. Relevanssi doesn’t stop people from
   attempting SQL injections but doesn’t make any SQL queries that aren’t protected
   from injections.
 * Since they all seem to be coming from a single IP, I recommend blocking that 
   IP at the server level.
 *  Thread Starter [danushkaj91](https://wordpress.org/support/users/danushkaj91/)
 * (@danushkaj91)
 * [3 years, 9 months ago](https://wordpress.org/support/topic/sql-injection-27/#post-15978954)
 * Thank you for the confirmation. Yes, I’ve blocked the IP. Thanks

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘SQL Injection’ is closed to new replies.

 * ![](https://ps.w.org/relevanssi/assets/icon-256x256.png?rev=3529670)
 * [Relevanssi - A Better Search](https://wordpress.org/plugins/relevanssi/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/relevanssi/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/relevanssi/)
 * [Active Topics](https://wordpress.org/support/plugin/relevanssi/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/relevanssi/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/relevanssi/reviews/)

 * 3 replies
 * 2 participants
 * Last reply from: [danushkaj91](https://wordpress.org/support/users/danushkaj91/)
 * Last activity: [3 years, 9 months ago](https://wordpress.org/support/topic/sql-injection-27/#post-15978954)
 * Status: resolved