tracker issue : CF-4126531

select a category, or use search below
(searches all categories and all time range)
Title:

Security Analyzer - Incorrect flagging SQLi (BlogCFC - blog.cfc)

| View in Tracker

Status/Resolution/Reason: Closed/Fixed/

Reporter/Name(from Bugbase): David Epler / David Epler (David Epler)

Created: 03/09/2016

Components: Security Analyzer

Versions: 2016

Failure Type: Unspecified

Found In Build/Fixed In Build: Alpha3_v12 /

Priority/Frequency: Major / Unknown

Locale/System: English / Win All

Vote Count: 0

Listed in the version 2016.0.02.299200 Issues Fixed doc 
Using BlogCFC as example code. 

The Security Analyzer is incorrectly flagging the use of the variable posted in getActiveDays() method within org/camden/blog/blog.cfc. The variable posted is controlled the entire time when it is used in the method. It does use instance.offset which is set in the init() method of blog.cfc. The value for instance.offset originates from the settings from blog.ini.cfm. At no time is any user provided data used in the creation of the variable posted and therefore is a false positive for SQLi.

----------------------------- Additional Watson Details -----------------------------

Watson Bug ID:	4126531

External Customer Info:
External Company:  
External Customer Name: David Epler
External Customer Email: dcepler@dcepler.net
External Test Config:  


Bug File Paths:
\\sjshare.corp.adobe.com\Prereleasebugfiles\ColdFusion\12.0\Alpha3_v12\4086190\blog.cfc

Attachments:

Comments:

Adding BUG AUDIT TRAIL ********action: updated fieldName: Fix By Product Milestone newValue: HF2 oldValue: Alpha oprid: vmannebo recordName: RQ_DEFECT timpestamp: 2016-02-29 12:53:32.0 action: updated fieldName: Fix By Milestone newValue: Post Release oldValue: Alpha oprid: vmannebo recordName: RQ_DEFECT timpestamp: 2016-02-29 12:53:32.0 action: updated fieldName: Fix By Milestone newValue: Alpha oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Reason newValue: Blank oldValue: PRHaveInfo oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Status newValue: ToFix oldValue: ToTrack oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Dev Assigned newValue: uogra oldValue: sanniset oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Priority newValue: 2 oldValue: 0 oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Fix By Product Milestone newValue: Alpha oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Owner newValue: uogra oldValue: preethi oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-12-22 11:23:54.0 action: updated fieldName: Status newValue: ToTrack oldValue: ToTrack oprid: prerelease recordName: RQ_DEFECT timpestamp: 2015-11-13 16:30:41.0 action: updated fieldName: Reason newValue: PRHaveInfo oldValue: PRNeedInfo oprid: prerelease recordName: RQ_DEFECT timpestamp: 2015-11-13 16:30:41.0 action: updated fieldName: State newValue: Open oldValue: Open oprid: prerelease recordName: RQ_DEFECT timpestamp: 2015-11-13 16:30:41.0 action: updated fieldName: Status newValue: ToTrack oldValue: Unverified oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-11-13 09:11:26.0 action: updated fieldName: Reason newValue: PRNeedInfo oldValue: Blank oprid: preethi recordName: RQ_DEFECT timpestamp: 2015-11-13 09:11:26.0
Comment by CFwatson U.
3834 | March 09, 2016 02:29:12 AM GMT
Added By: PreRelease User User Name:David Epler Note Added: Attached blog.cfc from BlogCFC as noted in ticket. Date Added :2015-11-13 16:30:41.0 Added By:preethi Note Added: Hi David, Can you attach the related testcase here. Thanks! Date Added :2015-11-13 09:11:28.0 Added By: PreRelease User User Name:David Epler Note Added: Entered Bug. Date Added :2015-11-10 19:12:28.0
Comment by CFwatson U.
3835 | March 09, 2016 02:29:13 AM GMT
The fix would be available in update 2 of ColdFusion 2016. Thanks!
Comment by S P.
3836 | May 26, 2016 01:31:53 AM GMT
test note
Comment by CFwatson U.
3837 | June 07, 2016 04:18:20 AM GMT
The fix for this bug is available as part of the early-access build for ColdFusion 2016 Update 2.
Comment by CFwatson U.
3838 | June 07, 2016 04:25:01 AM GMT