Task #1472

Need to clean "slashes" usage.

Added by remi over 4 years ago. Updated 10 months ago.

Status:Feedback Start date:08/14/2009
Priority:Normal Due date:
Assignee:moyo % Done:

0%

Category:Framework
Target version:Candidate for next major version

Description

Problem example : rules engine

Actually

input => slashes protected
output => not protected

Should be consistent.


Related issues

related to GLPI-PROJECT - Task #2038: Create Sql Requests Framework Feedback 02/16/2010
related to GLPI-PROJECT - Task #2272: Work on input / output filtering Feedback 09/07/2010

History

Updated by moyo over 4 years ago

  • post / get values : slashes protected.
  • From DB : not slashes protected.

Need to have the save behaviour.

Idea : all datas are [not] slashes protected.

  • slash protected :
    • more secure but need to filter all display due to slashes
    • problem with may have problem on regex (need to stripslashes before)
Proposition : not slashes protected
  • addslashes on DB insert, update or select
  • clean slashes getting datas from DB
  • do clean_cross_side_scripting on post/get for security

Updated by moyo over 4 years ago

  • Subject changed from RulesEngine : need to clean "slashes" usage. to Need to clean "slashes" usage.

Updated by moyo over 4 years ago

  • Assignee set to moyo

Updated by moyo over 4 years ago

  • Category changed from Rules Engines to Framework

Updated by moyo about 4 years ago

  • Target version changed from 0.78 to 33

Updated by moyo over 3 years ago

  • Tracker changed from Bug to Task

Updated by moyo over 3 years ago

  • Target version changed from 33 to 0.85

Updated by moyo 10 months ago

  • Status changed from New to Feedback
  • Target version changed from 0.85 to Candidate for next major version

Also available in: Atom PDF