Join GitHub today
Fixed SQL injection vulnerability #2281
What has been done to verify that this works as intended?
I tested query/update/delete in FormsProvider and InstanceProvider to check for regression.
Why is this the best possible solution? Were any other approaches considered?
It's requested by Google https://support.google.com/faqs/answer/7668308
a message we received in GPC says:
I don't know why they mentioned update only from
Are there any risks to merging this code? If so, what are they?
I shouldn't be but anyway we need to test this change.
Do we need any specific form for testing your changes? If so, please attach one.
Does this change require updates to documentation? If so, please file an issue here and include the link below.
Before submitting this PR, please make sure you have:
Ok so for testing stuff: We need to test free edited methods