Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

request #11192: Filters set in tracker reports are vulnerable to SQL injections

Download Browse

Change-Id: Ie7051dff5460c67be7932eac77143555428c946d

+29 −46
Thomas Gerbet (tgerbet) 2018-02-26 14:29
Thomas Gerbet (tgerbet) 2018-02-27 10:19
098b5b68dcb645db8a446d4c274157880208657f
30c35550532cbabe46455ea50995f8a95c2dd185
git #tuleap/stable/098b5b68dcb645db8a446d4c274157880208657f

Modified Files

Side by side diff
Inline diff
Name
M plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_Date.class.php +6 −27 Go to diff View file
M plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_LastModifiedBy.class.php +4 −3 Go to diff View file
M plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_List_Bind.class.php +9 −5 Go to diff View file
M plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_OpenList.class.php +3 −5 Go to diff View file
M plugins/tracker/include/Tracker/FormElement/Tracker_FormElement_Field_SubmittedBy.class.php +7 −6 Go to diff View file