#2252: wxGUI vector digitizer passing unescaped text to database -------------------------+------------------------------------------------- Reporter: marisn | Owner: grass-dev@… Type: defect | Status: new Priority: critical | Milestone: 7.0.5 Component: wxGUI | Version: svn-trunk Resolution: | Keywords: security, code injection, SQL CPU: | injection, data loss, v.db.update Unspecified | Platform: Unspecified -------------------------+-------------------------------------------------
Comment (by annakrat): In [changeset:"69175" 69175]: {{{ #!CommitTicketReference repository="" revision="69175" wxGUI: escape single quotes when editing attributes from GUI, see #2252 (merge from trunk, r69153, r69173) }}} -- Ticket URL: </ticket/2252#comment:18> GRASS GIS <https://grass.osgeo.org> _______________________________________________ grass-dev mailing list grass-dev@lists.osgeo.org http://lists.osgeo.org/mailman/listinfo/grass-dev