public void GetDiscount() { Discount discount = new Discount("D1", DiscountTypeEnum.Hidden, DateTime.Parse("01/01/2018"), DateTime.Parse("31/12/2018"), 50, true); // THIS exists in DB by SQL injection Discount find = handler.GetDiscount("D1"); Assert.AreEqual(discount, find); }