In-Portal Issue Tracker

Welcome to the In-Portal Open Source CMS Issue Tracker! This is a central management / tracking tool for all types of tasks / issues / bugs for the In-Portal Project. Before reporting any issues, please make sure to read the Guide into Issue Tracker and How to Properly Test and Report Bugs!

Viewing Issue Simple Details [ Jump to Notes ] [ Wiki ]

[ View Advanced ] [ Issue History ] [ Print ]

ID

Category

Type

Reproducibility

Date Submitted

Last Update

0001014

[In-Portal CMS] Database

bug report

always

2011-03-13 05:55

2011-09-19 16:09

Reporter

alex

View Status

public

Project Name

In-Portal CMS

Assigned To

alex

Developer

Priority

normal

Resolution

fixed

Fixed in Version

5.1.3-B1

Status

closed

Product Version

5.1.2-B2

Target Version

5.1.3

Time Estimate

No estimate

Summary

0001014: Unable to select user, that has ' in it's username

Description

In-Portal uses formatter classes to transform database values into human readable form and back.

Class kLEFTFormatter in particular is used along with user selectors to convert username selected into ID and back. I've recently discovered, that it doesn't escape value from the form before checking it's presence in database resulting sql error, when username has ' in it.

Additional Information

Tags

No tags attached.

Reference

https://groups.google.com/d/topic/in-portal-bugs/O0Ln5E6E4yY/discussion https://groups.google.com/d/topic/in-portal-bugs/AQ7PqO7GFMo/discussion

Change Log Message

Fixes form value not escaped in kLEFTFormatter class

Estimate Points

0

left_formatter_sql_error_when_field_contains_single_quote.patch [^] (1,145 bytes) 2011-03-13 05:55 [Show Content]

Index: left_formatter.php
===================================================================
--- left_formatter.php	(revision 14234)
+++ left_formatter.php	(working copy)
@@ -33,7 +33,7 @@
 		{
 			// required option is not defined in config => query for it
 			$db =& $this->Application->GetADODBConnection();
-			$sql = sprintf($options['left_sql'],$options['left_title_field'],$options['left_key_field'],$value);
+			$sql = sprintf($options['left_sql'],$options['left_title_field'],$options['left_key_field'], $db->escape($value));
 			$options['options'][$value] = $db->GetOne($sql);
 			if ($options['options'][$value] === false) return $value;
 		}
@@ -61,7 +61,7 @@
 
 		// requested option is not found in field options -> query for it
 		$db =& $this->Application->GetADODBConnection();
-		$sql = sprintf($options['left_sql'], $options['left_key_field'], $options['left_title_field'], $value);
+		$sql = sprintf($options['left_sql'], $options['left_key_field'], $options['left_title_field'], $db->escape($value));
 		$found = $db->GetOne($sql);
 		if ($found !== false) {
 			// option successfully retrieved from db -> cache it

Relationships [ Relation Graph ] [ Dependency Graph ]

related to

closed (5.2.0)

Improvements to user Login field

Notes
(0003295) phil (developer) 2011-03-14 05:50	tested GOOD on v510

(0003430) alex (manager) 2011-05-20 03:01	Fix committed to 5.1.x branch. Commit Message: Fixes 0001014: Unable to select user, that has ' in it's username

(0003869) alex (manager) 2011-09-19 16:09	Closing, since 5.1.3 release has been released.

Related Changesets
In-Portal CMS: 5.1.x r14322 Timestamp: 2011-05-20 03:01:44 Author: alex [ Details ] [ Diff ]	Fixes 0001014: Unable to select user, that has ' in it's username
	mod - /in-portal/branches/5.1.x/core/kernel/utility/formatters/left_formatter.php		[ Diff ] [ File ]

Issue History
Date Modified	Username	Field	Change
2011-09-19 16:09	alex	Note Added: 0003869
2011-09-19 16:09	alex	Status	resolved => closed
2011-05-20 03:01	alex	Note Added: 0003430
2011-05-20 03:01	alex	Status	reviewed and tested => resolved
2011-05-20 03:01	alex	Fixed in Version	=> 5.1.3-B1
2011-05-20 03:01	alex	Resolution	open => fixed
2011-05-20 03:01	alex	Assigned To	!COMMUNITY => alex
2011-05-20 03:01	alex	Changeset attached	5.1.x r14322
2011-04-04 11:49	Dmitry	Target Version	Icebox => 5.1.3
2011-03-14 05:50	phil	Note Added: 0003295
2011-03-14 05:50	phil	Status	needs testing => reviewed and tested
2011-03-14 05:50	phil	Note Deleted: 0003294
2011-03-14 05:49	phil	Note Added: 0003294
2011-03-13 06:47	alex	Relationship added	related to 0000964
2011-03-13 06:44	alex	Reference	https://groups.google.com/d/topic/in-portal-bugs/O0Ln5E6E4yY/discussion => https://groups.google.com/d/topic/in-portal-bugs/O0Ln5E6E4yY/discussion https://groups.google.com/d/topic/in-portal-bugs/AQ7PqO7GFMo/discussion
2011-03-13 05:58	alex	Assigned To	=> !COMMUNITY
2011-03-13 05:58	alex	Developer	=> alex
2011-03-13 05:58	alex	Status	active => needs testing
2011-03-13 05:57	alex	Reference	=> https://groups.google.com/d/topic/in-portal-bugs/O0Ln5E6E4yY/discussion
2011-03-13 05:55	alex	New Issue
2011-03-13 05:55	alex	File Added: left_formatter_sql_error_when_field_contains_single_quote.patch
2011-03-13 05:55	alex	Change Log Message	=> Fixes form value not escaped in kLEFTFormatter class

Web Development by Intechnic

In-Portal Open Source CMS

In-Portal Open Source CMS

Copyright © 2000 - 2009 MantisBT Group