XWIKI-22718, XWIKI-22691: Improve query validation

* add more tests

XWIKI-22718, XWIKI-22691: Improve query validation
d6fafbc6 · Thomas Mortagne · 55c5d568 · d6fafbc6
Commit d6fafbc6 authored 2 months ago by Thomas Mortagne
--- a/xwiki-platform-core/xwiki-platform-oldcore/src/test/java/com/xpn/xwiki/internal/store/hibernate/query/HqlQueryUtilsTest.java
+++ b/xwiki-platform-core/xwiki-platform-oldcore/src/test/java/com/xpn/xwiki/internal/store/hibernate/query/HqlQueryUtilsTest.java
@@ -63,8 +63,14 @@ public void isSafe()
            .isSafe("select doc.name, ot.field from XWikiDocument doc, XWikiSpace space, OtherTable as ot"));
        assertFalse(HqlQueryUtils.isSafe("select count(*) from OtherTable"));
        assertFalse(HqlQueryUtils.isSafe("select count(other.*) from OtherTable other"));
-        assertFalse(HqlQueryUtils.isSafe("select doc.fullName from XWikiDocument doc union all select name from OtherTable"));
-        assertFalse(HqlQueryUtils.isSafe("select doc.fullName from XWikiDocument doc where 1<>'1\\'' union select name from OtherTable #'"));
+        assertFalse(
+            HqlQueryUtils.isSafe("select doc.fullName from XWikiDocument doc union all select name from OtherTable"));
+        assertFalse(HqlQueryUtils
+            .isSafe("select doc.fullName from XWikiDocument doc where 1<>'1\\'' union select name from OtherTable #'"));
+        assertFalse(HqlQueryUtils.isSafe(
+            "select doc.fullName from XWikiDocument doc where $$='$$=concat( chr( 61 ),(chr( 39 )) ) ;select 1 -- comment'"));
+        assertFalse(HqlQueryUtils.isSafe(
+            "select doc.fullName from XWikiDocument doc where NVL(TO_CHAR(DBMS_XMLGEN.getxml('select 1 where 1337>1')),'1')!='1'"));
    }

    @Test