Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Minor
Fix Version/s: BACKEND
Affects Version/s: 2.4.11, 2.5.7, 2.6.4, 2.7.1
Component/s: Libraries
Labels:
- triaged

Affected Branches:
MOODLE_24_STABLE, MOODLE_25_STABLE, MOODLE_26_STABLE, MOODLE_27_STABLE
Workaround:

Hide

In circumstances where less than symbols are required, use PARAM_RAW instead.

Show
In circumstances where less than symbols are required, use PARAM_RAW instead.
Testing Instructions:
Hide

Using the test branch: https://github.com/gjb2048/moodle/tree/master_MDL-46754_test which adds this code: https://github.com/gjb2048/moodle/compare/master_MDL-46754_test

Create a new topic format based course and enter the course.

Observe that the output should be:

clean_param('<',PARAM_TEXT): <
clean_param('>',PARAM_TEXT): >
clean_param('<',PARAM_RAW) : <
clean_param('>',PARAM_RAW) : >
Show
Using the test branch: https://github.com/gjb2048/moodle/tree/master_MDL-46754_test which adds this code: https://github.com/gjb2048/moodle/compare/master_MDL-46754_test Create a new topic format based course and enter the course. Observe that the output should be: clean_param('<',PARAM_TEXT): < clean_param('>',PARAM_TEXT): > clean_param('<',PARAM_RAW) : < clean_param('>',PARAM_RAW) : >

In moodlelib.php, the comment for PARAM_TEXT states:

/**

 * PARAM_TEXT - general plain text compatible with multilang filter, no other html tags. Please note '<', or '>' are allowed here.

*/

define('PARAM_TEXT',  'text');

When calling 'clean_param' with text containing a less than character then no text is returned. To reproduce, with the code:

echo '<h3>clean_param(\'<\',PARAM_TEXT): '.clean_param('<',PARAM_TEXT).'</h3>';

echo '<h3>clean_param(\'>\',PARAM_TEXT): '.clean_param('>',PARAM_TEXT).'</h3>';

echo '<h3>clean_param(\'<\',PARAM_RAW) : '.clean_param('<',PARAM_RAW).'</h3>';

echo '<h3>clean_param(\'>\',PARAM_RAW) : '.clean_param('>',PARAM_RAW).'</h3>';

the output is:

clean_param('<',PARAM_TEXT):

clean_param('>',PARAM_TEXT): >

clean_param('<',PARAM_RAW) : <

clean_param('>',PARAM_RAW) : >

when it should be:

clean_param('<',PARAM_TEXT): <

clean_param('>',PARAM_TEXT): >

clean_param('<',PARAM_RAW) : <

clean_param('>',PARAM_RAW) : >

Discovered while testing

CONTRIB-5211 Section 5 does not remain expanded when browsing away and back

Resolved

duplicates

MDL-49071 Question type Match , does not work with "<" as a answer

Closed

has a non-specific relationship to

MDL-72058 Remove HTML tags when exporting to Dataformats that don't support it

Closed

has been marked as being related by

MDL-76132 Quick Grading truncates after special characters

Open

MDL-77088 Forum-text is truncated after lower-than-letter, if there is no following space

Open

MDL-77422 E-mails containing a "<" are truncated from this character on.

Open

MDL-29370 Cannot create a forum post with subject "x <> X"

Closed

MDL-85024 Text custom field doesn't display error message to user when HTML entered.

Open

is duplicated by

MDL-49077 clean_param($x, PARAM_TEXT) does not work the way users expect regarding < characters

Closed

MDL-74950 Text is truncated when saved if a < is immediatly followed by (an)other character(s), and not by a space

Closed

MDL-80419 Feedback : "<-" tags and other text overkill deletions

Closed

will help resolve

MDL-77689 wrong character encoding in group overview

Closed

MDL-81099 Quiz responses exported > missing text when using less than / HTML delimiter ("<xxx")

Closed

(3 has been marked as being related by, 3 is duplicated by, 2 will help resolve)

Assignee:: Unassigned

Reporter:: Gareth J Barnard

Participants:: alvolt, Clovis Tristao, CMR, Gareth J Barnard, Marina Glancy, Michael de Raadt, Petr Skoda, Sara Arjona (@sarjona), Tim Hunt

Votes:: 7 Vote for this issue

Watchers:: 20 Start watching this issue

Created:: 11/Aug/14 4:44 AM

Updated:: 27/Mar/25 3:39 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Clockify