Page MenuHomePhorge

D25669.1734660336.diff
No OneTemporary

D25669.1734660336.diff

diff --git a/src/applications/maniphest/query/ManiphestTaskQuery.php b/src/applications/maniphest/query/ManiphestTaskQuery.php
--- a/src/applications/maniphest/query/ManiphestTaskQuery.php
+++ b/src/applications/maniphest/query/ManiphestTaskQuery.php
@@ -358,6 +358,10 @@
$where[] = $this->buildOwnerWhereClause($conn);
if ($this->taskIDs !== null) {
+ if (!ctype_digit(implode('', $this->taskIDs))) {
+ throw new PhutilSearchQueryCompilerSyntaxException(
+ pht('Task IDs must be integer numbers.'));
+ }
$where[] = qsprintf(
$conn,
'task.id in (%Ld)',

File Metadata

Mime Type
text/plain
Expires
Fri, Dec 20, 02:05 (18 h, 8 m)
Storage Engine
blob
Storage Format
Raw Data
Storage Handle
1015720
Default Alt Text
D25669.1734660336.diff (617 B)

Event Timeline