-
-
Notifications
You must be signed in to change notification settings - Fork 3
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
SF form injection vs security #20
Comments
What does this extension use SF for? I thought it stored semantic data, though guess it just stuffs things into a template. If it's just building a template, SF is not needed. I'm guessing the SF form input things are used, and that people can define the registration form using those? |
It is just to generate a form and return a template transclusion which maybe better served by just trying to read the template first, generate the fields by adding the appropriate input field definitions without the potential hazard that can be added through some of the SF options. |
Maybe one could assign any page (no need for
This would isolate html generation to one single source and would allow for strict control of what is being invoked as field before and after the content generation. |
No doubt that the way is presently coded is not very orthodox and it might be potentially risky. |
About files: MW natively checks for the file extension as well as for the mime type, so I believe that there are no worries here. About SF: + per @toniher |
I have no objections to above comments and just wanted to ensure that at least the question have been raised to avoid any potential issue. |
Creating a user (together with the verification of the input data during the signup) can be highly sensitive and be under special scrutiny for security (email, personal data etc.).
Currently
$sfgFormPrinter->formHTML
is used the fetch the html generated form definition and the question arises whether this creates a security risk by injecting a form before the data input without verification (false data, stale data etc.).Questions
uploadable
(or whatever it is called in SF) during a registration process (where a file could contain malicious code)?@kghbln @toniher @JeroenDeDauw I don't have any answers but I'm looking for some insides whether this can be a real issue or not. In case it is an issue we should at least inform the user base about the potential.
PS: Looking at code samples like below makes me feel uneasy.
The text was updated successfully, but these errors were encountered: