Edit report at http://bugs.php.net/bug.php?id=53646&edit=1
ID: 53646
Comment by: anon at anon dot com
Reported by: phil dot allen at internode dot on dot net
Summary: Brackets being replaced with hash
Status: Bogus
Type: Bug
Package: Strings related
Operating System: Win x64
PHP Version: 5.3.4
Block user comment: N
Private report: N
New Comment:
>The code was being run in a popup window created by a javascript call
to window.open()
Please tell me you aren't attempting to pass SQL code through the user's
browser.
Previous Comments:
------------------------------------------------------------------------
[2011-01-04 23:25:26] phil dot allen at internode dot on dot net
After further investigation it appears that Microsoft is the culprit.
The code was being run in a popup window created by a javascript call to
window.open(). Internet Explorer was then modifying the output of teh
page to 'prevent cross-site scripting'.
------------------------------------------------------------------------
[2011-01-04 07:44:02] ras...@php.net
There is no chance this is PHP doing that. You must have something else
going on
here.
------------------------------------------------------------------------
[2011-01-04 07:41:55] phil dot allen at internode dot on dot net
Description:
------------
When concatenating two strings, brackets are being replaced by hashes
(#).
Test script:
---------------
$data1 = '\'2011-1-1';
$data2 = '\' AS DATE)|CAST(';
echo $data1 . $data2;
Expected result:
----------------
'2011-1-1' AS DATE)|CAST(
Actual result:
--------------
'2011-1-1' AS DATE#|CAST#
------------------------------------------------------------------------
--
Edit this bug report at http://bugs.php.net/bug.php?id=53646&edit=1
