developer.jelix.org is not used any more and exists only for history. Post new tickets on the Github account.
developer.jelix.org n'est plus utilisée, et existe uniquement pour son historique. Postez les nouveaux tickets sur le compte github.

Opened 7 years ago

Closed 7 years ago

#1503 closed bug (fixed)

jDaoConditions should satinize order input

Reported by: laurentj Owned by:
Priority: normal Milestone: Jelix 1.2.12
Component: jelix:dao Version: 1.4.0
Severity: normal Keywords:
Cc: Blocked By:
Blocking: Documentation needed: no
Hosting Provider: Php version:

Description

in addItemOrder, we should verify that the way is desc or asc, to avoid sql injection

Change History (2)

comment:1 Changed 7 years ago by laurentj

  • Status changed from new to confirmed

comment:2 Changed 7 years ago by laurentj

  • Resolution set to fixed
  • Status changed from confirmed to closed
Note: See TracTickets for help on using tickets.