Special character <> " '& should be escaped in DDL portlet
Description
Environment
Attachments
relates
Activity
petershin June 21, 2012 at 11:30 AM
The escapedModel attribute is set to true, so the extra escape isn't needed.
See line 52 portal-web/docroot/html/portlet/dynamic_data_lists/view.jsp
Michael Saechang June 21, 2012 at 9:18 AM
Committed on:
Portal 6.2.x GIT ID: 056e411d55810eda3708816b8c6cae9a6f6947f5.
Sophia.Zhang June 21, 2012 at 12:30 AMEdited
PASSED Manual Testing following the steps in the description.
Reproduced on:
Tomcat 7.0 + MySQL 5. Portal 6.1.x CE GIT ID: 422b9ff8fb3c7171b8e402712899c57516e25fb7.
Tomcat 7.0 + MySQL 5. Portal 6.1.x EE GIT ID: 94f8f37a1fe7df90fe4603c7e072ffe80f96c05d.
Tomcat 7.0 + MySQL 5. Portal 6.2.x GIT ID: 895007003b1534d7a606823ebeeea1f9ad74d4fb.
The special characters are not escaped.
Fixed on:
Tomcat 7.0 + MySQL 5. Portal 6.1.x CE GIT ID: aff87b87d8d44a8a71a3c4a0229cbf7373ecef32.
Tomcat 7.0 + MySQL 5. Portal 6.1.x EE GIT ID: 5508b31daae05330d8248d8837b19cfb84befe70.
Tomcat 7.0 + MySQL 5. Portal 6.2.x GIT ID: a123d5ea650f8795ff9e6fc4063011851fb61ff5.
Details
Assignee
Sophia.ZhangSophia.Zhang(Deactivated)Reporter
Sophia.ZhangSophia.Zhang(Deactivated)Labels
Branch Version/s
6.1.xBackported to Branch
CommittedFix Priority
2Git Pull Request
Components
Affects versions
Priority
Medium
Details
Details
Assignee
Sophia.ZhangReporter
Sophia.ZhangLabels
Branch Version/s
Backported to Branch
Fix Priority
Git Pull Request
Components
Affects versions
Priority
MediumZendesk Support
Linked Tickets
Zendesk Support
Linked Tickets
Zendesk Support
1. Go to control panel -> Dynamic Data List.
2. Add New list.
3. Fill description with special character <> " '&
You will find they won't be escaped.
See attached file.