Bug #34781: t3lib_userauth->getAuthInfoArray calls TYPO3_DB->cleanIntList without string parameter - TYPO3 Core - TYPO3 Forge

Actions

Copy link

Bug #34781

closed

t3lib_userauth->getAuthInfoArray calls TYPO3_DB->cleanIntList without string parameter

Added by Christian Finkemeier over 12 years ago. Updated almost 10 years ago.

Status:

Closed

Priority:

Must have

Assignee:

Category:

Target version:

Start date:

2012-03-13

Due date:

% Done:

Estimated time:

TYPO3 Version:

4.5

PHP Version:

5.3

Tags:

Complexity:

easy

Is Regression:

Sprint Focus:

Description

The same problem as i described in this bug: http://forge.typo3.org/issues/34780

The t3lib_userauth->getAuthInfoArray calls TYPO3_DB->cleanIntList without parameter being string...

Should be updated to something like this:

t3lib/class.t3lib_userauth.php: line 1282
$authInfo['db_user']['check_pid_clause'] = $this->checkPid ? ' AND pid IN ('.$GLOBALS['TYPO3_DB']->cleanIntList((string)$authInfo['db_user']['checkPidList']).')' : '';

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

TYPO3 Core

Custom queries

Bug #34781

t3lib_userauth->getAuthInfoArray calls TYPO3_DB->cleanIntList without string parameter

Updated by Oliver Hader over 12 years ago

Updated by Christian Finkemeier almost 10 years ago

Updated by Alexander Opitz almost 10 years ago