Bug #54027
closed
htmlspecialchars issue with select fields / filemounts
100%
Description
I'm not sure if this is a general issue or just an issue with filemounts.
When you have a folder with a special character (e.g. &) the value that is stored in the Database is HTML-encoded. The check if a given subfolder / file within the mount is accessible will fail.
When you look at the HTML source of the select field in the Backend, you see that the value is double HTML-encoded. I do not know if this double encoding in the value is intended behavior (which would be strange).
After clarification either the select fields need to be fixed or the filemount folder needs to be HTML-decoded.
Updated by Markus Klein almost 11 years ago
- Category set to File Abstraction Layer (FAL)
IMHO the DB content should not be encoded at all.
Updated by Gerrit Code Review almost 11 years ago
- Status changed from New to Under Review
Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/25770
Updated by Steffen Ritter almost 11 years ago
We need to have a look form the security side as well...
Updated by Gerrit Code Review almost 11 years ago
Patch set 1 for branch TYPO3_6-1 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/26367
Updated by Gerrit Code Review almost 11 years ago
Patch set 1 for branch TYPO3_6-0 of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/26368
Updated by Alexander Stehlik almost 11 years ago
- Status changed from Under Review to Resolved
- % Done changed from 0 to 100
Applied in changeset 78b00f381a79c94b0c0f9444e84380724b837cf1.
Updated by Riccardo De Contardi about 7 years ago
- Status changed from Resolved to Closed