This is an automated email from the ASF dual-hosted git repository.
jleroux pushed a commit to branch release18.12
in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/release18.12 by this push:
new 166bbdf6d7 Improved: Prevent URL parameters manipulation (OFBIZ-13147)
166bbdf6d7 is described below
commit 166bbdf6d75edb41831fa21f2b83f0a056036fd2
Author: Jacques Le Roux <jacques.le.r...@les7arts.com>
AuthorDate: Wed Oct 23 13:49:17 2024 +0200
Improved: Prevent URL parameters manipulation (OFBIZ-13147)
Fixes previous commit MODULE is not module
---
.../src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
b/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
index 26598de0c3..db157a6d26 100644
---
a/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
+++
b/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/ControlFilter.java
@@ -143,7 +143,7 @@ public class ControlFilter implements Filter {
if (queryString != null) {
queryString = URLDecoder.decode(queryString, "UTF-8");
if (UtilValidate.isUrl(queryString) ||
!SecuredUpload.isValidText(queryString, Collections.emptyList())) {
- Debug.logError("For security reason this URL is not
accepted", MODULE);
+ Debug.logError("For security reason this URL is not
accepted", module);
throw new RuntimeException("For security reason this URL
is not accepted");
}
}
