AOR_Reports - main group sql query sanitizing #1206
Assignees
Labels
Priority:Critical
Issues & PRs that are critical; broken core functionality, fatal errors - there are no workarounds
Type:Bug
Bugs within the core SuiteCRM codebase
Comments
mattlorimer
added
Type:Bug
gymad
added a commit
that referenced
this issue
Apr 6, 2016
fixed #1206 - AOR_Reports - main group sql query sanitizing
|
Still not 100% fixed... the functionality works, but now the main group's name is escaped... see attached picture.
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Noticed that if you create a report where you reference a field as the main group and that field contains certain control characters (like a single quote), the character makes it through all the way to the sql query and results in funky behaviour.
Eg main group set to name of account, one of the account names is "Mary's". This group will show in the results but all of the results will be missing because the sql select where clause is "where name is 'Mary's'... "
The text was updated successfully, but these errors were encountered: