If the query string has sensitive information for example session identifiers, then attackers can use this info to launch even further attacks. as the accessibility token in sent in GET requests, this vulnerability https://www.ralantech.com/mysql-database-health-check-consulting-service/