1: public void doPost(HttpServletRequest request, HttpServletResponse response) 2: throws IOException, ServletException { 3: 4: try { 5: String url = "DBServer"; 6: String usr = "Scott"; 7: 8: // passwd에 대한 검증이 없음 9: String passwd = request.getParameter("passwd" ); 10: Connection con = DriverManager.getConnection(url, usr, passwd); 11: 12: con.close(); 13: } catch (SQLException e) { 14: System.err.println("..."); 15: } 16: }