It looks like your query is based on a specific —a type of search string used by security researchers (and hackers) to find potentially vulnerable websites. Specifically, inurl:commy/index.php?id= is a pattern often used to find sites running the "Commy" content management system that might be susceptible to SQL injection .
The core issue is that the application trusts the id parameter from the URL. To fix this, implement these three industry-standard practices: inurl commy indexphp id better
If your blog posts look like ://yoursite.com , you’re leaving traffic on the table. While these dynamic URLs work perfectly fine for a database, they are a nightmare for human readers and search engine crawlers. It looks like your query is based on