[Koha-bugs] [Bug 9454] New: NewBasket does not use placeholders in sql
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Jan 23 12:17:51 CET 2013
http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=9454
Bug ID: 9454
Summary: NewBasket does not use placeholders in sql
Classification: Unclassified
Change sponsored?: ---
Product: Koha
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: minor
Priority: P5 - low
Component: Acquisitions
Assignee: koha-bugs at lists.koha-community.org
Reporter: colin.campbell at ptfs-europe.com
NewBasket interpolates variables into the sql string which is used to insert a
new basket in the database. This is a bad practice, placeholders should be used
instead allowing DBI to quote the input correctly
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list