#2252: wxGUI vector digitizer passing unescaped text to database
-----------------------------------------------------------------------------+
Reporter: marisn |
Owner: grass-dev@…
Type: defect |
Status: new
Priority: blocker |
Milestone: 7.0.0
Component: wxGUI |
Version: svn-trunk
Keywords: security, code injection, SQL injection, data loss, v.db.update |
Platform: Unspecified
Cpu: Unspecified |
-----------------------------------------------------------------------------+
Comment(by mlennert):
I can't reproduce this bug. I've tried with different SQL texts and they
all are just put into the text field in the attribute table.
Maris, can you still confirm this bug ?
--
Ticket URL: <http://trac.osgeo.org/grass/ticket/2252#comment:4>
GRASS GIS <http://grass.osgeo.org>
_______________________________________________
grass-dev mailing list
[email protected]
http://lists.osgeo.org/mailman/listinfo/grass-dev
