[Sommaire] [Imprimer]

   1  <?php
   2  
   3      lt_include( PLOG_CLASS_PATH."class/test/helpers/lifetypetestcase.class.php" );
   4      lt_include( PLOG_CLASS_PATH."class/config/config.class.php" );
   5  
   6      /**
   7       * \ingroup Test
   8       *
   9       * Regression test for the SQL injection vulnerabilities that were fixed
  10       * in LT 1.0.5 and 1.0.6.
  11       */
  12      class SQLInjection_Test extends LifeTypeTestCase
  13      {
  14          var $url;
  15          
  16  		function setUp()
  17          {
  18              // get the base url of the current installation
  19              $config =& Config::getConfig();
  20              $this->url = $config->getValue( "base_url" )."/index.php";
  21          }
  22          
  23  		function testArticleIdInjection()
  24          {
  25              // this one should return a page with an error message
  26              $url = $this->url."?op=ViewArticle&blogId=1&articleId=".urlencode("9999/**/UNION/**/SELECT/**/password, 1,1,1,1,1,1,1/**/FROM/**/lt_users/**/WHERE/**/id=1/*");
  27              
  28              $this->assertHTTPResponseContains( $url, "The article you specified could not be found" );
  29          }        
  30      }    
  31  ?>