Look specifically for lack of sanitization or escaping of `add_query_arg()` and `remove_query_arg()` return values #279

fklein-lu · 2015-05-15T10:16:42Z

After the recent patches concerning the potential vulnerabilities related to the add_query_arg() and remove_query_arg() functions, we should have a specific check for lack of sanitization or escaping.

The text was updated successfully, but these errors were encountered:

fklein-lu added enhancement static analysis labels May 15, 2015

fklein-lu added this to the 0.9 milestone Jul 6, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Look specifically for lack of sanitization or escaping of `add_query_arg()` and `remove_query_arg()` return values #279

Look specifically for lack of sanitization or escaping of `add_query_arg()` and `remove_query_arg()` return values #279

fklein-lu commented May 15, 2015

Look specifically for lack of sanitization or escaping of add_query_arg() and remove_query_arg() return values #279

Look specifically for lack of sanitization or escaping of add_query_arg() and remove_query_arg() return values #279

Comments

fklein-lu commented May 15, 2015

Look specifically for lack of sanitization or escaping of `add_query_arg()` and `remove_query_arg()` return values #279

Look specifically for lack of sanitization or escaping of `add_query_arg()` and `remove_query_arg()` return values #279