Skip to content
GitLab
Projects Groups Topics Snippets
  • /
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
  • Sign in
  • T TYPO3.CMS
  • Project information
    • Project information
    • Activity
    • Labels
    • Members
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributor statistics
    • Graph
    • Compare revisions
    • Locked files
  • Issues 0
    • Issues 0
    • List
    • Boards
    • Service Desk
    • Milestones
    • Iterations
    • Requirements
  • Merge requests 8
    • Merge requests 8
  • CI/CD
    • CI/CD
    • Pipelines
    • Jobs
    • Schedules
    • Test cases
  • Deployments
    • Deployments
    • Environments
    • Releases
  • Packages and registries
    • Packages and registries
    • Package Registry
    • Container Registry
    • Terraform modules
  • Monitor
    • Monitor
    • Incidents
  • Analytics
    • Analytics
    • Value stream
    • CI/CD
    • Code review
    • Insights
    • Issue
    • Repository
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
Collapse sidebar
  • accessibilityaccessibility
  • TYPO3.CMS
  • Repository
  • TYPO3.CMS
  • ..
  • Container
  • InlineRecordContainer.php
Find file BlameHistoryPermalink
  • Manuel Selbach's avatar
    [TASK] Refactor use of queryBuilder to use prepared statements · d478cbe9
    Manuel Selbach authored Oct 06, 2016 and Christian Kuhn's avatar Christian Kuhn committed Oct 26, 2016
    To remove the susceptiblity to errors of SQL injections within the core
    the principle of prepared statements should be followed for all queries.
    Even variables which will be casted to e.g. an integer should use
    setParameter(), setParameters() or createNamedParameter().
    
    Change-Id: I7d6d256a199ba05f75791eb01f38b3b89b421989
    Resolves: #78437
    Releases: master
    Reviewed-on: https://review.typo3.org/50090
    
    
    Tested-by: default avatarTYPO3com <no-reply@typo3.com>
    Reviewed-by: Anja Leichsenring's avatarAnja Leichsenring <aleichsenring@ab-softlab.de>
    Tested-by: Anja Leichsenring's avatarAnja Leichsenring <aleichsenring@ab-softlab.de>
    Reviewed-by: Christian Kuhn's avatarChristian Kuhn <lolli@schwarzbu.ch>
    Tested-by: Christian Kuhn's avatarChristian Kuhn <lolli@schwarzbu.ch>
    d478cbe9