B12974, Added validation for SQL parameters in FE requiring {{ }} enclosure (!794) · Merge requests · typo3 / qfq

Closed Zen Zalapski requested to merge B12974-Sanitize-Queries-in-Action-Elements into develop 2 months ago

Dec 17, 2024

refs #12974, Added validation for SQL parameters in FE requiring {{ }} enclosure · 632fc9dc

zzalap authored 2 months ago

- Added validation to ensure 5 SQL parameters (sqlBefore, sqlInsert, sqlUpdate, sqlDelete, sqlAfter) in FE are enclosed by {{ }}.
- New helper method `isEnclosedWithBraces`.
- New method `validateFeActions` to check for proper enclosure and throw an exception if validation fails.

632fc9dc

B12974, Added validation for SQL parameters in FE requiring {{ }} enclosure

Merge request reports

Activity