[TYPO3-core] RFC #12094: Bug (<- Feature, not bug...) : stdWrap function fullQuoteStr
Martin Holtz
typo3ng_2009 at martinholtz.de
Mon Nov 16 12:14:57 CET 2009
Hi,
REMINDER
> +1 by reading and testing
>
> I plead for pushing this into 4.3 since it is security related and a
> nobrainer.
>
> The patch makes it far more easier to quote stuff in TS and write secure
> DB requests. Although userfunc is possible, an explicit (and documented)
> option will attract more attention and make it easier to implement
> quoting/escaping.
>
> We have two +1 from non core, though Bastian is v5 core member.
>
> Steffen Kamper gave -1, but maybe he changed his mind meanwhile?
>
> I will write some text + examples for the TSref once this patch made it
> into 4.3.
thanks,
martin
More information about the TYPO3-team-core
mailing list