[TYPO3-core] RFC: Feature Request #6882: Enable stdWrap for select.where

[Sebastian Gebhard]

Andreas schrieb:
>> The negative side-effect of applying this RFC to Trunk would be that
>> SQL injections then possible in TypoScript as well. I don't think this
>> is a good idea.
> 
> Wouldn't that be possible already using select.andWhere?
Absolutely yes. Holding this feature back does not make sense at all.
I'd propose to include a warning into documentation not to use unescaped GPvars with this feature.