Basic release information
| Release | Download | File date | Last parsed | Files | Strings | Warnings |
|---|---|---|---|---|---|---|
| Email Field 6.x-1.2 | email-6.x-1.2.tar.gz | Sat, 06/13/2009 - 19:25 | Thu, 08/13/2009 - 20:50 | 3 | 29 | 2 |
Files parsed in this release
| File location | Version information |
|---|---|
| email/ | 1.9.2.8.4.12 2009/ |
| email/ | n/ |
| email/ | 1.1.2.2.4.1 2008/ |
Source code warnings identified
| Warning value |
|---|
| The first two watchdog() parameters should be literal strings. There should be no variables, concatenation, constants or even a t() call there. At watchdog('mail','Email injection exploit attempted in email form subject: '.check_plain($form_state['values']['subject']),WATCHDOG_NOTICE) in email/email.module on line 369. Read more at http://drupal.org/node/323101 |
| The first two watchdog() parameters should be literal strings. There should be no variables, concatenation, constants or even a t() call there. At watchdog('mail',t('%name-from sent an e-mail at %form.',array('%name-from'=>theme('placeholder',$form_state['values']['name']." <$from>"),'%form'=>url($_GET['q'],array('absolute'=>TRUE))))) in email/email.module on line 397. Read more at http://drupal.org/node/323101 |