Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.Currently the module is throwing the text variable directly into the query.
If you search for variables that contain 'nice' for example the 'n' will be interpreted in the call to db_query.
Not a security issue because this module requires high-level permissions (Administer content types).
| Comment | File | Size | Author |
|---|---|---|---|
| variable_dump-fix-queries.patch | 1.13 KB | slip |
Comments
Comment #1
slip commentedmarking as critical...