I have a searchbox and where I am submitting the text like java, etc and based on that I am finding the rhe data through GORM like given code:
def searchQueryInSession = params?.searchQuery
def searchSkill = MetaSkills.findAllByName(searchQueryInSession)
Is it possible to do sql injection here? If yes then, how can we prevent this behaviour in the described scenario?