From 520c12e5a746a39d9abc13000c209bce459415c8 Mon Sep 17 00:00:00 2001
From: seaznCode <alexander.atmn@gmail.com>
Date: Wed, 11 Mar 2026 23:42:44 +0100
Subject: [PATCH] fix: update query method to use non-prepared statements for
 dynamic SQL compatibility

---
 database/database.js | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/database/database.js b/database/database.js
index 9f628d5..c874b49 100644
--- a/database/database.js
+++ b/database/database.js
@@ -78,9 +78,10 @@ module.exports = {
       throw error;
     }
   },
-  // Alias for execute to maintain compatibility
+  // Non-prepared query – avoids server-side prepared-statement issues
+  // (e.g. "Incorrect arguments to mysqld_stmt_execute" with dynamic SQL)
   async query(query, params = []) {
-    return await pool.execute(query, params);
+    return await pool.query(query, params);
   },
   // Get single row
   async get(query, params = []) {