Actions
Bug #4431
closedPosting to a params column results in every input in the POST being stored
Description
When posting to a params column (new CB Configuration) every input in the form is stored. Even those that shouldn't like the following.
option=com_comprofiler
task=showconfig
act=save
cbsecuritym3=cbm_058c9b81_544dc2e7_701ce0508081b3ff63f6babc6e28031f
Updated by krileon almost 11 years ago
Believe this is due to post handling of sql:field in ActionController.php.
Updated by krileon almost 11 years ago
- Status changed from Assigned to Resolved
- % Done changed from 0 to 100
Hardcoded values like task, etc.. are now filtered out. Action path variables are also now removed.
Actions