Tags:
create new tag
view all tags

Question

Is there an easy way to escape unsafe data (which comes from untrusted source) in TWiki?

I need to query a data from existing mysql database using DatabasePlugin and the problem that some fields could contain potentially unsafe data which normally needs to be escaped. Unfortunately, <pre> and <verbatim> tags wouldn't help that much in this case as page layout could be broken due to long strings.

Can this be done on Twiki side?

Environment

TWiki version: TWikiRelease04x01x02
TWiki plugins: DefaultPlugin, EmptyPlugin, InterwikiPlugin DatabasePlugin
Server OS: Gentoo 2007.0
Web server:  
Perl version:  
Client OS:  
Web Browser:  
Categories:  

-- ArtemTambovskiy - 06 Jul 2007

Answer

ALERT! If you answer a question - or someone answered one of your questions - please remember to edit the page and set the status to answered. The status selector is below the edit box.

yes, but you'll need to write code - probly in DatabasePlugin. Though maybe VarENCODE might be relevant - in combination with a div :/

-- SvenDowideit - 18 Aug 2007

Change status to:
WebForm
SupportStatus AnsweredQuestions
Edit | Attach | Watch | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r2 - 2007-08-18 - SvenDowideit
 
  • Learn about TWiki  
  • Download TWiki
This site is powered by the TWiki collaboration platform Powered by Perl Hosted by OICcam.com Ideas, requests, problems regarding TWiki? Send feedback. Ask community in the support forum.
Copyright © 1999-2026 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.