The usage of xorm get has risk

## Description
Such as the usage of xorm get in models/attachment.go, if the id or uuid is empty, the query sql will be no where: select ... from attachment limit 1.  The query will not be an error, but the query result could be not the result you want.
I suppose we use xorm get by this way:
attach := new(Attachment)
has, err := engine.Where("id=?", id).Get(attach)


## Screenshots
![image](https://user-images.githubusercontent.com/7686122/84849538-186c1a00-b088-11ea-8a3b-0ab14b1d5075.png)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

The usage of xorm get has risk #11921

Description

Screenshots

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

The usage of xorm get has risk #11921

Description

Description

Screenshots

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions