[TYPO3-core] RFC #12094: Bug (<- Feature, not bug...) : stdWrap function fullQuoteStr

Martin Holtz typo3ng_2009 at martinholtz.de
Mon Nov 16 12:14:57 CET 2009


Hi,

REMINDER

> +1 by reading and testing
> 
> I plead for pushing this into 4.3 since it is security related and a
> nobrainer.
> 
> The patch makes it far more easier to quote stuff in TS and write secure
> DB requests. Although userfunc is possible, an explicit (and documented)
> option will attract more attention and make it easier to implement
> quoting/escaping.
> 
> We have two +1 from non core, though Bastian is v5 core member.
> 
> Steffen Kamper gave -1, but maybe he changed his mind meanwhile?
> 
> I will write some text + examples for the TSref once this patch made it
> into 4.3.

thanks,
martin


More information about the TYPO3-team-core mailing list