2017 © Pedro Peláez
 

typo3-cms-extension mksanitizedparameters

image

dmk/mksanitizedparameters

  • Sunday, July 29, 2018
  • by rengaw83
  • Repository
  • 25 Watchers
  • 1 Stars
  • 3,316 Installations
  • PHP
  • 1 Dependents
  • 0 Suggesters
  • 0 Forks
  • 0 Open issues
  • 53 Versions
  • 11 % Grown

The README.md

MK Sanitized Parameters

TYPO3 compatibility Latest Stable Version Total Downloads Build Status License, (*1)

What does it do?

Sanitizes all parameters in $_GET, $_POST and ServerRequestInterface $requestfor frontend and backend. Every possible parameter can be configured separately. The configuration can be for a specific position in the parameter array or common for every possible position or even default for all parameters, which are not configured., (*2)

This way possible attacks like MySQL injections can be prevented even for parameters where attack potential was not suspected. So unclosed security holes are harder or even not at all exploited., (*3)

Taking care of the correct data type of a parameter is now done in one single place. You don't need to call intval() for numeric parameters every time you use them (e.g. in a MySQL query). You can use them safe and directly without any further action at any place you want. You just have to provide the correct rule/configuration to be sure your code is not vulnerable to MySQL injections etc., (*4)

The sanitizing itself is done through the filter function of PHP. So you can take full advantage of it's features and provide even custom filters., (*5)

Features

The extension has 3 modes which can be configured through extension configuration:, (*6)

  • stealth mode: simulate the sanitizing and log all theoretical actions. you also need to set a page id where the logs are written to.
  • log mode: every parameter which is sanitized (has changed) will be logged at warn level. This way you can investigate what happened. Either it was an attack attempt or the rules have to be adjusted.
  • debug mode: useful during development. every parameter which is sanitized (has changed) will be reported on the screen through a debug message.

Rules

Own rules for sanitizing a parameter can be registered easily. see rules, (*7)

UsersManual, (*8)

Rules, (*9)

ChangeLog, (*10)

The Versions

29/07 2018

dev-migration_to_6.2

dev-migration_to_6.2

  Sources   Download

23/05 2018

dev-master

9999999-dev http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+ GPL-2.0-or-later

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

23/05 2018

3.0.4

3.0.4.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0-or-later

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

31/03 2018

0.0.4

0.0.4.0

  Sources   Download

31/03 2018

0.2.2

0.2.2.0

  Sources   Download

31/03 2018

0.0.9

0.0.9.0

  Sources   Download

31/03 2018

0.2.9

0.2.9.0

  Sources   Download

31/03 2018

1.0.1

1.0.1.0

  Sources   Download

31/03 2018

0.1.5

0.1.5.0

  Sources   Download

31/03 2018

0.3.3

0.3.3.0

  Sources   Download

31/03 2018

0.0.3

0.0.3.0

  Sources   Download

31/03 2018

0.2.0

0.2.0.0

  Sources   Download

31/03 2018

0.2.6

0.2.6.0

  Sources   Download

31/03 2018

1.0.0

1.0.0.0

  Sources   Download

31/03 2018

0.0.8

0.0.8.0

  Sources   Download

31/03 2018

0.1.3

0.1.3.0

  Sources   Download

31/03 2018

0.1.9

0.1.9.0

  Sources   Download

31/03 2018

0.3.2

0.3.2.0

  Sources   Download

31/03 2018

0.0.2

0.0.2.0

  Sources   Download

31/03 2018

0.0.7

0.0.7.0

  Sources   Download

31/03 2018

0.3.9

0.3.9.0

  Sources   Download

31/03 2018

0.1.2

0.1.2.0

  Sources   Download

31/03 2018

0.2.5

0.2.5.0

  Sources   Download

31/03 2018

0.3.11

0.3.11.0

  Sources   Download

31/03 2018

0.3.8

0.3.8.0

  Sources   Download

31/03 2018

0.0.1

0.0.1.0

  Sources   Download

31/03 2018

0.0.6

0.0.6.0

  Sources   Download

31/03 2018

0.1.8

0.1.8.0

  Sources   Download

31/03 2018

0.2.4

0.2.4.0

  Sources   Download

31/03 2018

0.1.1

0.1.1.0

  Sources   Download

31/03 2018

0.3.10

0.3.10.0

  Sources   Download

31/03 2018

0.3.5

0.3.5.0

  Sources   Download

31/03 2018

0.0.5

0.0.5.0

  Sources   Download

31/03 2018

0.1.7

0.1.7.0

  Sources   Download

31/03 2018

0.3.0

0.3.0.0

  Sources   Download

31/03 2018

0.3.4

0.3.4.0

  Sources   Download

31/03 2018

0.1.0

0.1.0.0

  Sources   Download

31/03 2018

0.1.6

0.1.6.0

  Sources   Download

31/03 2018

0.2.3

0.2.3.0

  Sources   Download

14/02 2018

3.0.3

3.0.3.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0-or-later

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

06/12 2017

3.0.2

3.0.2.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

04/10 2017

3.0.1

3.0.1.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

11/05 2017

3.0.0

3.0.0.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

09/05 2017

2.0.4

2.0.4.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

13/03 2017

2.0.3

2.0.3.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

02/11 2016

2.0.2

2.0.2.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

26/05 2016

2.0.1

2.0.1.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

11/05 2016

2.0.0

2.0.0.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

23/03 2016

1.1.1

1.1.1.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

The Requires

 

by Hannes Bochmann

security parameter sanitize typo3 cms

28/01 2016

1.1.0

1.1.0.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

by Hannes Bochmann

security parameter sanitize typo3 cms

29/07 2015

1.0.5

1.0.5.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

by Hannes Bochmann

security parameter sanitize typo3 cms

12/03 2015

1.0.4

1.0.4.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

by Hannes Bochmann

security parameter sanitize typo3 cms

23/02 2015

1.0.3

1.0.3.0 http://www.dmk-ebusiness.de/

Sanitize $_REQUEST, $_POST and $_GET before the processing of TYPO3 in backend or frontend starts. Take a look into the documentation how to add your own rules or see which one exist.

  Sources   Download

GPL-2.0+

by Hannes Bochmann

security parameter sanitize typo3 cms