PHP :: Bug #66119 :: FPM full status produces invalid JSON with double quotes in query string

Bug #66119

FPM full status produces invalid JSON with double quotes in query string

Submitted:

2013-11-19 16:51 UTC

Modified:

2021-08-23 18:15 UTC

Votes:	7
Avg. Score:	4.1 ± 0.3
Reproduced:	7 of 7 (100.0%)
Same Version:	1 (14.3%)
Same OS:	1 (14.3%)

From:

andy at propcom dot co dot uk

Assigned:

cmb (profile)

Status:

Duplicate

Package:

FPM related

PHP Version:

5.4.22

OS:

CentOS

Private report:

CVE-ID:

None

View Add Comment Developer Edit

Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If this is not your bug, you can add a comment by following this link.
If this is your bug, but you forgot your password, you can retrieve your password here.

Password:

Status:
Package:
Bug Type:
Summary:
From:	andy at propcom dot co dot uk
New email:
PHP Version:		OS:

New Comment:

[2013-11-19 16:51 UTC] andy at propcom dot co dot uk

Description:
------------
The query string of an FPM request is copied unescaped into the JSON output. If the query string contains an unescaped double quote, this causes invalid JSON to be output.

The query string is correctly escaped when output as HTML or XML, this needs extending to JSON:

https://github.com/php/php-src/blob/PHP-5.4.22/sapi/fpm/fpm/fpm_status.c#L421

Test script:
---------------
Note that most browsers will urlencode double quotes automatically so CURL (or equivalent) should be used to test.

curl 'http://localhost/sleep.php?test"foo' &

curl 'http://localhost/fpmstatus.php?json&full'


Expected result:
----------------
..."request uri":"/sleep.php?test\"foo"...

Actual result:
--------------
..."request uri":"/sleep.php?test"foo"...

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2021-05-29 11:22 UTC] michiel at hazelhof dot nl

Seems to be a duplicate of #64539

[2021-08-23 18:15 UTC] cmb@php.net

-Status: Open +Status: Duplicate -Assigned To: +Assigned To: cmb

[2021-08-23 18:15 UTC] cmb@php.net

Closing as duplicate of bug #64539.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Thu Apr 18 09:01:27 2024 UTC