[WICKET-2552] CreditCardValidator accepts invalid inputs - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.4.4, 1.5-M1
Component/s: wicket
Labels:
None

Description

(1) The onValidate() method of the CreditCardValidator class returns true for invalid inputs with null or unicode character such as 4\0\0\0\0\0\0\0\0\0\0\0\0\0\0.
(2) Also there is no length check on the input, therefore even invalid length inputs such as 9845 are accepted.
(3) There is no check for invalid issuer identifier, i.e., 840898920205250 is accepted, where 84XXXX is not a valid issuer identifier

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

WICKET-2552-fix.patch
03/Nov/09 12:40
23 kB
Joachim Rohde
CreditCardValidatorTest.java
03/Nov/09 12:40
5 kB
Joachim Rohde

Activity

People

Assignee:: Juegen Donnerstag

Reporter:: Madhuri Marri

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 30/Oct/09 02:21

Updated:: 08/Nov/09 07:46

Resolved:: 08/Nov/09 07:46