Lets say I have a database where anyone can read. In my front end code I set it up to display only one record after the user gives me some information.
Database has email as ID and a bunch of information. I ask the user for their email and make a query to display only the information on their record.
If my database can be acceed by anyone that means that someone with developer tools / coding knowldge can bypass my code and aceess all the records in the database?