[Phpgroupware-tracker] [bugs #3374] Bad SQL and poor relation in /regist

phpgroupware-tracker

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Phpgroupware-tracker] [bugs #3374] Bad SQL and poor relation in /regist

From:	Dr. Christian B�ttger
Subject:	[Phpgroupware-tracker] [bugs #3374] Bad SQL and poor relation in /registration/inc/class.soreg.inc.php
Date:	Wed, 21 Apr 2004 03:42:31 -0400
User-agent:	Mozilla/5.0 (compatible; Konqueror/3.2; Linux 2.4.21-202-default; X11; i686; de, address@hidden) (KHTML, like Gecko)

This mail is an automated notification from the bugs tracker
 of the project: phpGroupWare.

/**************************************************************************/
[bugs #3374] Latest Modifications:

Changes by: 
                Dr. Christian Böttger <address@hidden>
'Date: 
                Wed 04/21/04 at 07:42 (Europe/Berlin)

            What     | Removed                   | Added
---------------------------------------------------------------------------
         Assigned to | None                      | skwashd


------------------ Additional Follow-up Comments ----------------------------
is this still valid?
Kai, did you provide a patch?







/**************************************************************************/
[bugs #3374] Full Item Snapshot:

URL: <http://savannah.gnu.org/bugs/?func=detailitem&item_id=3374>
Project: phpGroupWare
Submitted by: Kai Hofmann
On: Tue 04/29/03 at 09:06

Category:  registration
Item Group:  devel cvs
Severity:  5 - Average
Priority:  5 - Normal
Resolution:  None
Assigned to:  skwashd
Status:  Open
Component Version:  None
Platform Version:  None
Reproducibility:  Every Time


Summary:  Bad SQL and poor relation in /registration/inc/class.soreg.inc.php 

Original Submission:  The SQL statement I found here is wrong - because in SQL 

phpgw_addressbook.lid='*$account_lid*'

is not what you want - correct it must be:

phpgw_addressbook.lid like '%$account_lid%'

last but not least referencing two tables in this way is absolutly evil! 
primary and foreign keys should always
be of the same type without a pattern matching!

                        $GLOBALS['phpgw']->db->query("select * from 
phpgw_accounts, phpgw_addressbook where account_lid='$account_lid' and 
phpgw_addressbook.lid='*$account_lid*'",__LINE__,__FILE__);
./registration/inc/class.soreg.inc.php


Follow-up Comments
------------------


-------------------------------------------------------
Date: Wed 04/21/04 at 07:42         By: cboettger
is this still valid?
Kai, did you provide a patch?













For detailed info, follow this link:
<http://savannah.gnu.org/bugs/?func=detailitem&item_id=3374>

_______________________________________________
  Message sent via/by Savannah
  http://savannah.gnu.org/

[Prev in Thread]

Current Thread

[Next in Thread]

[Phpgroupware-tracker] [bugs #3374] Bad SQL and poor relation in /registration/inc/class.soreg.inc.php, Dr. Christian B�ttger <=

Prev by Date: [Phpgroupware-tracker] [bugs #3373] Bad relations between phpgw_log and phpgw_accounts
Next by Date: [Phpgroupware-tracker] [bugs #3385] misdirected
Previous by thread: [Phpgroupware-tracker] [bugs #3373] Bad relations between phpgw_log and phpgw_accounts
Next by thread: [Phpgroupware-tracker] [bugs #3385] misdirected
Index(es):
- Date
- Thread