33
2
mirror of https://github.com/joomla-extensions/jedchecker.git synced 2024-11-12 00:06:27 +00:00
Commit Graph

23 Commits

Author SHA1 Message Date
Denis Ryabov
a8ea5b75c2 Mitigate ErrorReporting rule to warning-level 2021-05-11 18:38:26 +03:00
Denis Ryabov
8f1bb04d8d correct variable name 2021-04-04 11:28:55 +03:00
Denis Ryabov
606fb5225c fix comment 2021-04-04 11:28:30 +03:00
Denis Ryabov
14138dd097 show line number and code in the errorreporting rule 2021-04-04 11:25:30 +03:00
21faa210dc
Merge PR #86 into develop 2021-03-27 05:32:24 +02:00
7e1346a2ca
Merge pull request #87 into joomla/develop 2021-03-07 02:58:08 +02:00
3d51728978
Added more comments to the calculate_line_number method and fixed the variable naming. 2021-03-07 02:13:09 +02:00
ebb388a5c7
Merge pull request #76 into joomla/develop 2021-03-07 02:08:19 +02:00
Denis Ryabov
e063c3fe22
Add direct MySQLi access to the errors list 2021-02-14 00:13:03 +03:00
Denis Ryabov
aaa100fbbb fix regular expressions ("." character should be escaped) 2021-02-13 23:12:08 +03:00
f22a82d6cf
Merge pull request #77 from dryabov/patch-11 2021-01-27 15:15:04 +02:00
Denis Ryabov
fa5eb52dd6
Don't warn on str_replace and preg_replace
Both `str_replace` and `preg_replace` (deprecated /e modifier is checked in another rule) are widely used and shouldn't be considered as a marker of malicious code
2021-01-24 20:37:57 +03:00
Denis Ryabov
36159b616c
A simpler way to get line number 2021-01-24 20:32:07 +03:00
SharkyKZ
b7c1d87817
Support exit in entry point check 2020-09-03 11:41:52 +03:00
Anibal Sanchez
510e0b168c
Merge pull request #51 from dryabov/patch-1
Fix false-positive for JAMSS rule#23
2019-05-17 11:25:17 +02:00
Anibal Sanchez
03c7294a4c
Merge pull request #54 from dryabov/patch-4
Add `print_r` to "errorlog" list
2019-05-17 11:24:50 +02:00
Denis Ryabov
373603166d
Add print_r to "errorlog" list
Display a notice for `print_r` function (along with `error_log`, `var_export`, `var_dump`)
2019-05-15 17:25:32 +03:00
Denis Ryabov
e379627132
remove zero-width-space characters
Replace `mysql_​​escape_​​string` by `mysql_​escape_string`
2019-05-15 17:23:19 +03:00
Denis Ryabov
2f7943f6ac
Fix false-positive for JAMSS rule#23
JAMSS rule#23 gives false-positive warning for files that starts with `defined('_JEXEC')` (because of partial `exec` match) and use `$_GET` or `$_POST`. This patch requires `exec` (and other function names in) to be checked explicitly using word boundaries (`\b`) in the regex.
2019-05-15 16:48:40 +03:00
anibalsanchez
0f241adba7 More Copryright fixes 2019-03-10 17:09:42 +01:00
anibalsanchez
5119fc102a 2.1.1 - Copyright updated to Joomla 2019-03-10 09:49:52 +01:00
anibalsanchez
b34cb440a4 2.1.0 2019-03-09 20:44:14 +01:00
Jaz Parkyn
e2eb961633 Removal of build tools 2017-02-14 14:34:35 +00:00