Révision b4adf10d
Ajouté par Assos Assos il y a plus de 9 ans
drupal7/modules/simpletest/tests/database_test.test | ||
---|---|---|
1947 | 1947 |
|
1948 | 1948 |
$this->assertEqual($num_records, 4, 'Returned the correct number of rows.'); |
1949 | 1949 |
} |
1950 |
|
|
1951 |
/** |
|
1952 |
* Tests that the sort direction is sanitized properly. |
|
1953 |
*/ |
|
1954 |
function testOrderByEscaping() { |
|
1955 |
$query = db_select('test')->orderBy('name', 'invalid direction'); |
|
1956 |
$order_bys = $query->getOrderBy(); |
|
1957 |
$this->assertEqual($order_bys['name'], 'ASC', 'Invalid order by direction is converted to ASC.'); |
|
1958 |
} |
|
1950 | 1959 |
} |
1951 | 1960 |
|
1952 | 1961 |
/** |
... | ... | |
3391 | 3400 |
public function testArrayArgumentsSQLInjection() { |
3392 | 3401 |
// Attempt SQL injection and verify that it does not work. |
3393 | 3402 |
$condition = array( |
3394 |
"1 ;INSERT INTO {test} SET name = 'test12345678'; -- " => '',
|
|
3403 |
"1 ;INSERT INTO {test} (name) VALUES ('test12345678'); -- " => '',
|
|
3395 | 3404 |
'1' => '', |
3396 | 3405 |
); |
3397 | 3406 |
try { |
Formats disponibles : Unified diff
Udpate to 7.33