Uploaded image for project: 'WPWC_RESURS'
  1. WPWC_RESURS
  2. RWC-303

Sanitize, Escape, and Validate

    XMLWordPrintable

Details

    • Task
    • Status: Done (View Workflow)
    • Highest
    • Resolution: Done
    • None
    • 1.0.0, 0.0.1.1
    • None
    • None
    • RBWC-1.0.0 Submission Review

    Description

      Examples rows for sanity.

      tornevalls-resurs-bank-payment-gateway-for-woocommerce/src/Module/PluginApi.php:77: $action = isset($_REQUEST['action']) ? (string)$_REQUEST['action'] : '';
      tornevalls-resurs-bank-payment-gateway-for-woocommerce/src/Module/PluginApi.php:220: return $_REQUEST[$key] ?? '';

      tornevalls-resurs-bank-payment-gateway-for-woocommerce/src/Gateway/ResursCheckout.php:118: $rcoPaymentData = $_REQUEST['rco_payment'] ?? [];

      tornevalls-resurs-bank-payment-gateway-for-woocommerce/src/Gateway/ResursDefault.php:1804: $apiRequestContent = json_decode($baseHandler->base64urlDecode($_REQUEST['apiData']), true);

      Escape when echo'd.

      https://developer.wordpress.org/plugins/security/securing-output/

      tornevalls-resurs-bank-payment-gateway-for-woocommerce/templates/product_annuity.phtml:3: echo $partPayString
      tornevalls-resurs-bank-payment-gateway-for-woocommerce/templates/adminpage_shipping.phtml:8: <?php echo nl2br(implode("\n", $customer_shipping));
      tornevalls-resurs-bank-payment-gateway-for-woocommerce/templates/checkout_paymentfield.phtml:1:<div style="display:<?php echo !$streamLine ? $displayMode : ''; ">
      tornevalls-resurs-bank-payment-gateway-for-woocommerce/templates/checkout_paymentfield.phtml:2: <label for="<?php echo $fieldName " style="width:100%;display:block;">
      tornevalls-resurs-bank-payment-gateway-for-woocommerce/templates/checkout_paymentfield.phtml:3: <?php echo $fieldLabel

      Attachments

        Activity

          People

            Unassigned Unassigned
            Tornevall Tomas Tornevall
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Git Integration

                Error rendering 'com.xiplink.jira.git.jira_git_plugin:git-issue-webpanel'. Please contact your Jira administrators.