Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

isvalid('email',foo) sometimes throws instead of returning false

Description

You'd be amazed what users manage to put into CSV files we see.

Example :

this throws java.text.ParseException rather than returning false.

Remove the chr() or use a number like '7' and it's fine. Note chr(7) is just as unprintable as whatever (unicode ?) is chr(8207).

isValid() is passed untrusted user input right, so any exceptions should be caught and turned into returning false ?

Environment

trycf.com

Activity

Show:

Pothys - MitrahSoft 22 February 2022 at 09:30

Pothys - MitrahSoft 23 August 2021 at 06:59
Edited

This issue was fixed by the ticket LDEV-2491 ticket's fix. Both issues were solved by this fix

Pothys - MitrahSoft 17 August 2021 at 10:08

I've checked this ticket and confirmed this issue happened on lucee latest version 5.3.8.201-SNAPSHOT too. While validate mail using isValid(), If the input has chr(8207) means it throws an error like java. text.ParseException: A prohibited code point was found in the inputbar. Seems ACF returns false.

Stacktrace

Fixed

Details

Assignee

Reporter

Priority

Labels

New Issue warning screen

Before you create a new Issue, please post to the mailing list first https://dev.lucee.org

Once the issue has been verified, one of the Lucee team will ask you to file an issue

Affects versions

Created 16 August 2021 at 16:21
Updated 22 February 2022 at 09:31
Resolved 22 February 2022 at 09:31