Skip to content

bugzilla
bugzilla
Commit d0e08d06 authored by bbaetz%student.usyd.edu.au's avatar bbaetz%student.usyd.edu.au
Browse files
Options

Bug 107743 - post_bug.cgi doesn't properly validate parameters

r=gerv, justdave
parent 1d29501c
Hide whitespace changes
Inline Side-by-side
Showing with 11 additions and 3 deletions
post_bug.cgi
View file @ d0e08d06
...@@ -39,7 +39,6 @@ sub sillyness { ...@@ -39,7 +39,6 @@ sub sillyness {
$zz = %::COOKIE; $zz = %::COOKIE;
$zz = %::components; $zz = %::components;
$zz = %::versions; $zz = %::versions;
$zz = @::legal_bug_status;
$zz = @::legal_opsys; $zz = @::legal_opsys;
$zz = @::legal_platform; $zz = @::legal_platform;
$zz = @::legal_priority; $zz = @::legal_priority;
...@@ -122,7 +121,12 @@ if (Param("useqacontact")) { ...@@ -122,7 +121,12 @@ if (Param("useqacontact")) {
} }
if (exists $::FORM{'bug_status'}) { if (exists $::FORM{'bug_status'}) {
if (!UserInGroup("canedit") && !UserInGroup("canconfirm")) { # Ignore the given status, so that we can set it to UNCONFIRMED
# or NEW, depending on votestoconfirm if either the given state was
# unconfirmed (so that a user can't override the below check), or if
# the user doesn't have permission to change the default status anyway
if ($::FORM{'bug_status'} == $::unconfirmedstate
|| (!UserInGroup("canedit") && !UserInGroup("canconfirm"))) {
delete $::FORM{'bug_status'}; delete $::FORM{'bug_status'};
} }
} }
...@@ -142,6 +146,10 @@ if (!exists $::FORM{'target_milestone'}) { ...@@ -142,6 +146,10 @@ if (!exists $::FORM{'target_milestone'}) {
$::FORM{'target_milestone'} = FetchOneColumn(); $::FORM{'target_milestone'} = FetchOneColumn();
} }
if (!Param('letsubmitterchoosepriority')) {
$::FORM{'priority'} = Param{'defaultpriority'};
}
GetVersionTable(); GetVersionTable();
CheckFormField(\%::FORM, 'product', \@::legal_product); CheckFormField(\%::FORM, 'product', \@::legal_product);
CheckFormField(\%::FORM, 'version', \@{$::versions{$::FORM{'product'}}}); CheckFormField(\%::FORM, 'version', \@{$::versions{$::FORM{'product'}}});
...@@ -152,7 +160,7 @@ CheckFormField(\%::FORM, 'bug_severity', \@::legal_severity); ...@@ -152,7 +160,7 @@ CheckFormField(\%::FORM, 'bug_severity', \@::legal_severity);
CheckFormField(\%::FORM, 'priority', \@::legal_priority); CheckFormField(\%::FORM, 'priority', \@::legal_priority);
CheckFormField(\%::FORM, 'op_sys', \@::legal_opsys); CheckFormField(\%::FORM, 'op_sys', \@::legal_opsys);
CheckFormFieldDefined(\%::FORM, 'assigned_to'); CheckFormFieldDefined(\%::FORM, 'assigned_to');
CheckFormField(\%::FORM, 'bug_status', \@::legal_bug_status); CheckFormField(\%::FORM, 'bug_status', [$::unconfirmedstate, 'NEW']);
CheckFormFieldDefined(\%::FORM, 'bug_file_loc'); CheckFormFieldDefined(\%::FORM, 'bug_file_loc');
CheckFormField(\%::FORM, 'component', CheckFormField(\%::FORM, 'component',
\@{$::components{$::FORM{'product'}}}); \@{$::components{$::FORM{'product'}}});
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment