GeoTools

FilterToSQLTest should have some more SQL injection attack related tests

Details

  • Type: Task Task
  • Status: Open Open
  • Priority: Major Major
  • Resolution: Unresolved
  • Affects Version/s: 2.5.2
  • Fix Version/s: 2.7.6
  • Component/s: jdbc
  • Labels:
    None

Description

FilterToSql seems to do a fair job at escaping and interpreting parameters so to make sql injection attacks hard. Add anyways some more targeted tests, following the leads at:

Activity

Ascending order - Click to sort in descending order
Andrea Aime made changes -
Field Original Value New Value
Assignee Andrea Aime [ aaime ]
Jody Garnett made changes -
Fix Version/s 2.7-M0 [ 15891 ]
Jody Garnett made changes -
Fix Version/s 2.7-M1 [ 16521 ]
Fix Version/s 2.7-M0 [ 15891 ]
Jody Garnett made changes -
Fix Version/s 2.7-RC1 [ 16571 ]
Fix Version/s 2.7-M1 [ 16521 ]
Jody Garnett made changes -
Fix Version/s 2.7-M3 [ 16572 ]
Fix Version/s 2.7-M2 [ 16571 ]
Justin Deoliveira made changes -
Fix Version/s 2.7-M4 [ 16726 ]
Fix Version/s 2.7-M3 [ 16572 ]
Andrea Aime made changes -
Fix Version/s 2.7-beta1 [ 16974 ]
Fix Version/s 2.7-M4 [ 16726 ]
Justin Deoliveira made changes -
Fix Version/s 2.7-RC1 [ 17076 ]
Fix Version/s 2.7-beta1 [ 16974 ]
Justin Deoliveira made changes -
Fix Version/s 2.7.0 [ 17109 ]
Fix Version/s 2.7-RC1 [ 17076 ]
Justin Deoliveira made changes -
Fix Version/s 2.7.1 [ 17255 ]
Fix Version/s 2.7.0 [ 17109 ]
Justin Deoliveira made changes -
Fix Version/s 2.7.2 [ 17359 ]
Fix Version/s 2.7.1 [ 17255 ]
Jody Garnett made changes -
Fix Version/s 2.7.3 [ 17442 ]
Fix Version/s 2.7.2 [ 17359 ]
Andrea Aime made changes -
Fix Version/s 2.7.4 [ 17863 ]
Fix Version/s 2.7.3 [ 17442 ]
Justin Deoliveira made changes -
Fix Version/s 2.7.5 [ 18236 ]
Fix Version/s 2.7.4 [ 17863 ]
Justin Deoliveira made changes -
Fix Version/s 2.7.6 [ 18554 ]
Fix Version/s 2.7.5 [ 18236 ]

People

  • Assignee:
    Andrea Aime
    Reporter:
    Andrea Aime
Vote (0)
Watch (1)

Dates

  • Created:
    Updated: