Uploaded image for project: 'Planet4'
  1. Planet4
  2. PLANET-3517

Code cleanup: Http parameter polution

XMLWordPrintable

    • Icon: Task Task
    • Resolution: Done
    • Icon: Must have Must have
    • 1.53
    • 1
    • Code Refactoring
    • Sprint #87

      classes/class- p4- campaign- exporter.php
      Line: 74

      Code Summary
      The GET parameter 'post[0]' is received in line 68 of the file classes/class-p4-campaign-exporter.php in the method P4_Campaign_Exporter::single_post_export_bulk_action().
      The user-supplied data is concatenated into parameter markup in line 68 of the file classes/class-p4-campaign-exporter.php in the function single_post_export_bulk_action().
      The user-supplied data is then used unsanitized in the sensitive operation wp_redirect() in line 74 of the file classes/class-p4-campaign-exporter.php in the method P4_Campaign_Exporter::single_post_export_bulk_action().

            sdeshmuk Sagar Deshmukh
            kkokkoro Konstantinos Kokkorogiannis (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: