Open funderburkjim opened 3 years ago
This issue prompted by a comment in https://github.com/sanskrit-lexicon/PWG/issues/3
It was found that a substring search 'a*h' functions as a 'glob' with 'suffix' choice: e.g. returning 1 अंह् 2 अक्षानह् 3 अक्ष्णयाद्रुह् 4 अतिगाह्
etc.
We need to check if the regex construction from user data is safe.
Was this allowal of '*' intentional or accidental? What about other 'glob' characters (+,?)
The code involved is queryparm.php.
Never knew regexes work here.
This issue prompted by a comment in https://github.com/sanskrit-lexicon/PWG/issues/3
It was found that a substring search 'a*h' functions as a 'glob' with 'suffix' choice: e.g. returning 1 अंह् 2 अक्षानह् 3 अक्ष्णयाद्रुह् 4 अतिगाह्
etc.
We need to check if the regex construction from user data is safe.
Was this allowal of '*' intentional or accidental? What about other 'glob' characters (+,?)