Task #1472
Need to clean "slashes" usage.
| Status: | Feedback | Start date: | 08/14/2009 | |
|---|---|---|---|---|
| Priority: | Normal | Due date: | ||
| Assignee: | moyo | % Done: | 0% | |
| Category: | Framework | |||
| Target version: | Candidate for next major version |
Description
Problem example : rules engine
Actually
input => slashes protected
output => not protected
Should be consistent.
Related issues
History
#1 Updated by moyo almost 13 years ago
- post / get values : slashes protected.
- From DB : not slashes protected.
Need to have the save behaviour.
Idea : all datas are [not] slashes protected.
- slash protected :
- more secure but need to filter all display due to slashes
- problem with may have problem on regex (need to stripslashes before)
- addslashes on DB insert, update or select
- clean slashes getting datas from DB
- do clean_cross_side_scripting on post/get for security
- prerequisite : use standard functions for SQL requests SqlRequestsFramework
#2 Updated by moyo almost 13 years ago
- Subject changed from RulesEngine : need to clean "slashes" usage. to Need to clean "slashes" usage.
#3 Updated by moyo almost 13 years ago
- Assignee set to moyo
#4 Updated by moyo almost 13 years ago
- Category changed from Rules Engines to Framework
#5 Updated by moyo over 12 years ago
- Target version changed from 0.78 to 33
#6 Updated by moyo over 11 years ago
- Tracker changed from Bug to Task
#7 Updated by moyo over 11 years ago
- Target version changed from 33 to 0.85
#8 Updated by moyo about 9 years ago
- Status changed from New to Feedback
- Target version changed from 0.85 to Candidate for next major version