Task #75755: Automatically create a named parameter for value related QueryBuilder methods - TYPO3 Core - TYPO3 Forge

Actions

Copy link

Task #75755

closed

Epic #75555: Further Doctrine Development

Automatically create a named parameter for value related QueryBuilder methods

Added by Morton Jonuschat about 8 years ago. Updated over 6 years ago.

Status:

Closed

Priority:

Should have

Assignee:

Morton Jonuschat

Category:

Database API (Doctrine DBAL)

Target version:

8.1

Start date:

2016-04-18

Due date:

% Done:

100%

Estimated time:

TYPO3 Version:

PHP Version:

7.0

Tags:

Complexity:

Sprint Focus:

Description

To reduce the risks of SQL injections automatically create named parameters for methods that commonly deal with user input like ->set(), ->setValue() and ->values()
Provide the option to disable this behavior to allow for advanced usage with SQL expressions.

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

TYPO3 Core

Custom queries

Task #75755

Automatically create a named parameter for value related QueryBuilder methods

Updated by Gerrit Code Review about 8 years ago

Updated by Gerrit Code Review about 8 years ago

Updated by Morton Jonuschat about 8 years ago

Updated by Riccardo De Contardi over 6 years ago