Skip Menu |

This queue is for tickets about the JSON CPAN distribution.

Report information
The Basics
Id: 24870
Status: resolved
Priority: 0/
Queue: JSON
People
Owner: Nobody in particular
Requestors: seagull [...] mitsuki.no-ip.com
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: (no value)

History Show all quoted text
  Sat Feb 10 08:55:48 2007 seagull [...] mitsuki.no-ip.com - Ticket created
Subject: FIX: Security probrem
Date: Sat, 10 Feb 2007 22:55:10 +0900
To: bug-JSON [...] rt.cpan.org
From: seagull <seagull [...] mitsuki.no-ip.com>
Hi. I wrote patch to against JSON-1.0.7 ... RPC handler package package MyApp::RPC; use MyApp::Schema; sub findUser { my $rows = MyApp::Schema::execute('select * from users'; ... } ... Main package my $rpc = JSONROC::Transport::HTTP::Daemon ->new()->dispatch_to('MyApp::RPC')->handle(); In this code exports 'MyApp;;Schema' package implicitly. Any client can call a method 'MyApp::Schema::execute' and take any SQL result. -- seagull <seagull@mitsuki.no-ip.com>

Message body is not shown because sender requested not to inline it.

  Sun Mar 25 18:07:00 2007 makamaka [...] cpan.org - Status changed from 'new' to 'open'
  Wed Mar 19 21:59:53 2008 makamaka [...] cpan.org - Correspondence added
Since JSON::RPC 0.93, allowable_procedure() was added. Please check JSON::RPC distributions. Thanks,
  Wed Mar 19 21:59:55 2008 makamaka [...] cpan.org - Status changed from 'open' to 'resolved'