Wrong numeric entities convertion in xmlrpc_encode_request
| Bug #28597 | Wrong numeric entities convertion in xmlrpc_encode_request | ||||
|---|---|---|---|---|---|
| Submitted: | 2004-06-01 01:55 UTC | Modified: | 2004-06-01 22:16 UTC | ||
| From: | fernando dot nemec at folha dot com dot br | Assigned: | |||
| Status: | Closed | Package: | XMLRPC-EPI related | ||
| PHP Version: | 4.3.6 | OS: | Linux 2.4 | ||
| Private report: | No | CVE-ID: | None | ||
[2004-06-01 01:55 UTC] fernando dot nemec at folha dot com dot br
Description: ------------ In special circunstances, the funcion xmlrpc_encode_request may do wrong numeric entities convertions. This occur when the escaping is set to "non-ascii" (this is on by default) and when the xml data has any caracter which ascii code % 10 < 10 (ex: 202,203,204, so on). Reproduce code: --------------- $request_xml = xmlrpc_encode_request( "method" , Array( "?emec" ) , Array( "version" => "xmlrpc" ) ) ; print( $request_xml ) ; Expected result: ---------------- <?xml version="1.0" encoding="iso-8859-1"?> <methodCall> <methodName>teste</methodName> <params> <param> <value> <string>Ñemec</string> </value> </param> </params> </methodCall> Actual result: -------------- <?xml version="1.0" encoding="iso-8859-1"?> <methodCall> <methodName>teste</methodName> <params> <param> <value> <string>emec</string> </value> </param> </params> </methodCall>
Patches
Pull Requests
History
AllCommentsChangesGit/SVN commits
[2004-06-01 08:17 UTC] derick@php.net
[2004-06-01 16:35 UTC] fernando dot nemec at folha dot com dot br
[2004-06-01 22:16 UTC] iliaa@php.net