Bug #4431: Posting to a params column results in every input in the POST being stored - CB - Joomlapolis forge

Actions

Copy link

Bug #4431

closed

Posting to a params column results in every input in the POST being stored

Added by krileon about 10 years ago. Updated over 9 years ago.

Status:

Closed

Priority:

Normal

Assignee:

beat

Target version:

CB 2.0.0

Start date:

28 February 2014

Due date:

% Done:

100%

Estimated time:

Description

When posting to a params column (new CB Configuration) every input in the form is stored. Even those that shouldn't like the following.

option=com_comprofiler
task=showconfig
act=save
cbsecuritym3=cbm_058c9b81_544dc2e7_701ce0508081b3ff63f6babc6e28031f

Actions

Copy link

Updated by krileon about 10 years ago

Believe this is due to post handling of sql:field in ActionController.php.

Actions

Copy link

Updated by krileon about 10 years ago

Status changed from Assigned to Resolved
% Done changed from 0 to 100

Hardcoded values like task, etc.. are now filtered out. Action path variables are also now removed.

Actions

Copy link

Updated by beat over 9 years ago

Priority changed from High to Normal

Actions

Copy link

Updated by beat over 9 years ago

Status changed from Resolved to Closed

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

CB

Custom queries

Bug #4431

Posting to a params column results in every input in the POST being stored

Updated by krileon about 10 years ago

Updated by krileon about 10 years ago

Updated by beat over 9 years ago

Updated by beat over 9 years ago