[jira] [Resolved] (FINERACT-1969) SQL Injection exception trown even if no insecure string is in the input

Peter Santa (Jira) Wed, 18 Oct 2023 07:23:03 -0700


     [ 
https://issues.apache.org/jira/browse/FINERACT-1969?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Peter Santa resolved FINERACT-1969.
-----------------------------------
    Resolution: Fixed

Tested on 
[https://github.com/apache/fineract/commit/8b1a1c0d40fa8810fad3232075e3341afd6bcda5]

Results: Passed

> SQL Injection exception trown even if no insecure string is in the input
> ------------------------------------------------------------------------
>
>                 Key: FINERACT-1969
>                 URL: https://issues.apache.org/jira/browse/FINERACT-1969
>             Project: Apache Fineract
>          Issue Type: Bug
>          Components: Data Tables, Savings
>            Reporter: Peter Santa
>            Priority: Blocker
>
> h1. Steps to reproduce
>  * insert data with any of á ó ú ű, etc.
> h1. Expected result
>  * Data that does not contain SQL injection string, should be allowed to be 
> inserted.
> h1. Actual result
>  * SQL injection exception is thrown, even if the data to be inserted does 
> not contain insecure string.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (FINERACT-1969) SQL Injection exception trown even if no insecure string is in the input

Reply via email to