Closed Bug 882576 Opened 12 years ago Closed 12 years ago

If I write or 1=1 in the description of the bug, bugzilla does not allow me to log the bug..Possible SQL injection

Categories

(bugzilla.mozilla.org :: General, defect)

Product:
bugzilla.mozilla.org
Component:
General
Version:
Production
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: sandeepsaxena14, Unassigned)

Details

User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/27.0.1453.110 Safari/537.36 Steps to reproduce: [Steps]: 1. Got to log a new bug 2. Provide all the relevant information 3. Provide following in description or 1=1 4. Submit the bug Actual results: [Issue]: Bugzilla does not allow to log the bug with this description Expected results: Bug should have been logged
Component: Untriaged → General
Product: Firefox → bugzilla.mozilla.org
Version: 4.0 Branch → Production
I am unable to get this to cause an error for me following your instructions.
Status: UNCONFIRMED → RESOLVED
Closed: 12 years ago
OS: Windows 7 → All
Hardware: x86_64 → All
Resolution: --- → WORKSFORME
You need to log in before you can comment on or make changes to this bug.