Openbravo Issue Tracking System - Openbravo ERP |
| View Issue Details |
|
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0009577 | Openbravo ERP | Z. Others | public | 2009-06-22 11:38 | 2011-10-28 18:56 |
|
| Reporter | shuehner | |
| Assigned To | iciordia | |
| Priority | urgent | Severity | major | Reproducibility | have not tried |
| Status | closed | Resolution | no change required | |
| Platform | | OS | 5 | OS Version | |
| Product Version | pi | |
| Target Version | | Fixed in Version | | |
| Merge Request Status | |
| Review Assigned To | |
| OBNetwork customer | |
| Web browser | |
| Modules | Core |
| Support ticket | |
| Regression level | |
| Regression date | |
| Regression introduced in release | |
| Regression introduced by commit | |
| Triggers an Emergency Pack | No |
|
| Summary | 0009577: Audit all xsql to ensure that all xsql-parameters of type argument/replace are properly validated - part2 |
| Description | All xsql parameters of type argument/replace are potential candidates for injection sql code into the query. The code should be audited to ensure that the parameters' value have been properly validated by the callers. |
| Steps To Reproduce | |
| Proposed Solution | |
| Additional Information | |
| Tags | No tags attached. |
| Relationships | | related to | defect | 0009501 | | closed | shuehner | Audit all xsql to ensure that all xsql-parameters of type argument/replace are properly validated -part1 |
|
| Attached Files | |
|
| Issue History |
| Date Modified | Username | Field | Change |
| 2009-06-22 11:38 | shuehner | New Issue | |
| 2009-06-22 11:38 | shuehner | Assigned To | => rafaroda |
| 2009-06-22 11:38 | shuehner | Issue generated from | 0009501 |
| 2009-06-22 11:38 | shuehner | Relationship added | related to 0009501 |
| 2009-06-29 13:25 | psarobe | Status | new => scheduled |
| 2009-06-29 13:25 | psarobe | Assigned To | rafaroda => shuehner |
| 2009-06-29 13:25 | psarobe | fix_in_branch | => pi |
| 2009-06-30 13:40 | psarobe | Assigned To | shuehner => rafaroda |
| 2009-06-30 13:40 | psarobe | fix_in_branch | pi => |
| 2009-07-10 16:43 | pjuvara | Priority | immediate => urgent |
| 2010-02-11 18:05 | rafaroda | Assigned To | rafaroda => adrianromero |
| 2011-06-03 11:00 | dalsasua | Assigned To | adrianromero => dalsasua |
| 2011-07-20 18:11 | dalsasua | Assigned To | dalsasua => jonalegriaesarte |
| 2011-10-28 18:15 | psarobe | Assigned To | jonalegriaesarte => iciordia |
| 2011-10-28 18:56 | iciordia | Note Added: 0042294 | |
| 2011-10-28 18:56 | iciordia | Status | scheduled => closed |
| 2011-10-28 18:56 | iciordia | Resolution | open => no change required |