Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

cfqueryparam sql type cf_sql_integer overflow

Description

it should give an exception like ACF

Environment

MSSQL

<cfquery name="q">
select <cfqueryparam CFSQLTYPE="cf_sql_integer" value="11111111111111111"> as a
</cfquery>
<cfdump var="#q.a#">

LUCEE returns q.a = 2147483647 ( max int )

Attachments

1
  • 26 Oct 2020, 11:32 am

Activity

Show:

Zac Spitzer 12 December 2024 at 13:30

Zac Spitzer 12 December 2024 at 11:08

I’m investigating, but 5.3.8.201 is very old and definitely no longer supported and subject to multiple CVEs

Adrian Sanchez 11 December 2024 at 23:00

Still happening in 5.3.8.201

Ben Nadel 29 November 2021 at 10:49

I’m on MySQL 5.7.32 with the com.mysql.cj-8.0.19.lex driver extension.

Ben Nadel 25 November 2021 at 14:18
Edited

Oh chickens, I just ran into this too – this is honestly a very dangerous problem and can lead to data-leakage (as the wrong value gets send to the DB, which could to the wrong records being displayed to the user). I would vote for this to become something high-priority.

Details

Assignee

Reporter

Priority

Labels

New Issue warning screen

Before you create a new Issue, please post to the mailing list first https://dev.lucee.org

Once the issue has been verified, one of the Lucee team will ask you to file an issue

Affects versions

Created 26 October 2020 at 10:39
Updated 12 December 2024 at 13:30

Flag notifications