While testing, I do get an error when passing the input asdf%00 to my applications username. The database in the backend spits an error, because Postgre can't handle 0x00 in text fields.
<h4>PersistencyException</h4>
<pre><code><strong>org.postgresql.util.PSQLException: FEHLER: ungültige Byte-Sequenz für Kodierung „UTF8“: 0x00</strong></code></pre>
Is this exploitable with an SQL injection, or do I assume correctly that it isn't?
