Uploaded image for project: 'RAML Module Builder'
  1. RAML Module Builder
  2. RMB-803

Fix URL encoding in BuildCQL preventing CQL injection

    XMLWordPrintable

    Details

    • Template:
      Standard Bug Write-Up Format
    • Story Points:
      1
    • Development Team:
      Core: Platform

      Description

      Overview:

      BuildCQL.buildCQL() doesn't URL encode cqlStatementOperator and operatorBetweenArgs. This may result in CQL injection.

      Solution:

      URL encode the complete CQL query.

       

        TestRail: Results

          Attachments

            Issue Links

              Activity

                People

                Assignee:
                julianladisch Julian Ladisch
                Reporter:
                julianladisch Julian Ladisch
                Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved:

                    TestRail: Runs

                      TestRail: Cases