[TYPO3-commerce] getSingleInputField "umlaut" bug
Falk Kühnel
fk at cogitatio.de
Tue Dec 9 11:40:58 CET 2008
Hi!
I was referring to "UTF-8" instead of "UTF8".
And double quotes are not really slower than single quotes as i heve
recently seen in a test.
But it seems there is another problem than just the name of the
characterset.
Best regards
Falk
Jonas Dübi schrieb:
> Hi
>
> This is the same. The only difference is that "" allows $ for direct
> variable call, '' is faster because it doesn't parse anything but '.
>
> I verified the Bug which was found by Cedric, and it's a real problem.
>
> XSS code should be filtered by the removeXSS function which is provided
> by t3lib_div. There is a great article about it in T3N.
>
> Best regards,
> Jonas
>
> Falk Kühnel schrieb:
>
>> Hi
>>
>> Shouldnt that be "UTF-8"?
>> > $value = addslashes(htmlentities($fieldValue, ENT_COMPAT,'UTF-8'));
>>
>> Best regards
>> Falk
>>
> _______________________________________________
> TYPO3-project-commerce mailing list
> TYPO3-project-commerce at lists.netfielders.de
> http://lists.netfielders.de/cgi-bin/mailman/listinfo/typo3-project-commerce
>
>
More information about the TYPO3-project-commerce
mailing list