URL manipulation always returns a 200:OK in meteor - getting flagged as violation in OWASP-ZAP

Question

I ran OWASP ZAP and the tool threw up a high vulnerability for possible SQL injection issue. Although we know for sure we do not use any sql databases as part of our applica