Joomla! Issue Tracker | Joomla! CMS #107 - mod_menu invalid rendering of items of type alias and url

Closed
1 Feb 2012
Medium
Build: master
# 107
Diff
n3t:patch-1

Pending

User tests: Successful: Unsuccessful:

n3t
28 Jan 2012

In Joomla 2.5 mod_menu rendering of menu items of type alias and url calls htmlspecialchars for item url.
But this is already processed by helper of mod%menu by calling JRoute::_() function. It results in invalid urls.

657fd39 28 Jan 2012

mod_menu duplicate htmlspecialchars call for menu items type alias and url

n3t - open - 28 Jan 2012

infograf768 - comment - 29 Jan 2012

Please create a tracker on joomlacode

elinw - comment - 29 Jan 2012

Unfortunately just reverting will simply recreate the security issue of allowing dangerous strings to be saved.

realityking - comment - 30 Jan 2012

I'm confused, either the string is double encoded or not. If it was encoded before there shouldn't have been an issue. This doesn't make sense to me.

infograf768 - close - 1 Feb 2012

infograf768 - comment - 1 Feb 2012

Corrected through new patch in tracker

coolbung - reference | 885eab7 - 23 Aug 13

Add a Comment

Older
Newer

Joomla! Issue Tracker - CMS

[#107] - mod_menu invalid rendering of items of type alias and url

Add a Comment