Opened 19 months ago

#23655 new defect

SQL error in parameter REPORT

Reported by: gk Owned by: qbi
Priority: Medium Milestone:
Component: Internal Services/Service - trac Version:
Severity: Normal Keywords:
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Doing something like https://trac.torproject.org/projects/tor/query?status=closed&report=x results in a

DataError: invalid input syntax for integer: "x" LINE 2: ... SELECT title, description FROM report WHERE id='x' ^

Trac error. We got a similar report for that on our HackerOne platform by weedatae.

Upon digging a bit this seems to be https://trac.edgewall.org/ticket/11613 which should be fixed by https://trac.edgewall.org/changeset/12787. Now, our Trac says it is version 1.2 but the fix made it in to 1.1.2dev. I am wondering if that's a new issue or 1.2 did not pick it up.

Child Tickets

Change History (0)

Note: See TracTickets for help on using tickets.