Skip to content
Snippets Groups Projects

B12974, Added validation for SQL parameters in FE requiring {{ }} enclosure

Closed B12974, Added validation for SQL parameters in FE requiring {{ }} enclosure
B12974-Sanitize-Queries-in-Action-Elements into develop
Closed Zen Zalapski requested to merge B12974-Sanitize-Queries-in-Action-Elements into develop
Compare
and
3 files
+ 34
0
Compare changes
  • Side-by-side
  • Inline
Files
3
extension/Classes/Core/Form/FormAction.php
+ 2
0
@@ -133,6 +133,8 @@ class FormAction {
// Iterate over all Action FormElements
foreach ($feSpecAction as $fe) {
// Check if sql*** = Exists and is Enclosed by {{ }}
Support::validateFeActions($fe, ACTION_REQUIRING_BRACES);
// Preparation for Log, Debug
$this->store->setVar(SYSTEM_FORM_ELEMENT, Logger::formatFormElementName($fe), STORE_SYSTEM); // debug