code-injection sanitization unidata u2 uniquery

Sanitize Input for UniData

Can anyone provide a function to sanitize input for a UniData query? Or provide a list of things to remove?

Solution

Here's a list of characters reserved by UniQuery:

 " double quote
 ' apostrophe (single quote)
 / forward slash
 [ left square bracket
 \ back slash
 ] right square bracket
 ^ caret

You can write a quick function that takes a string, does a SWAP for each of these characters--you can swap with the ISO 8859-1 decimal code (e.g., ] for ])--and returns the sanatized string.

Android Koin injected viewmodel with multiple same class parameters fails
Dependency Injection with parameters
Toastr implementation in Angular17 at standalone components
Is the call (&) operator less vulnerable to code injection attacks than Invoke-Expression?
JS: inject into BoundFunctionObject for bookmarklet script
VSCode Extension - Grammar Injection Into Multiple Languages
How to safely authenticate a user using LDAP?
How can I disable JVM bytecode verification at runtime?
Sharing memory between two processes (C, Windows)
What is the smallest possible SQL injection attack character sequence?
Inject own Logic into existing Quakus Extension
How to override a control's method, when initialized by FXMLLoader?
What are the possible list of Linux bash shell injection commands?
Cannot wait until the entire DOM is loaded with Scripty Chrome extension
.NET MAUI 8: System.Reflection.TargetInvocationException on initializing the main view with dependency injection
Spring: How to inject a value to static field?
Unsatisfied dependencies for type X with qualifiers @Default
C# - Extend/Add interface to parameter of overridden method
How to safely invoke Java keytool from C# code
Constructor injection into a base class using autofac
Autofac. Base Class properties resolved without specific injection
fix elf segment address on an objcopy output binary
.htaccess files are repeatedly being created in File Directory
How do you remove all javascript from an SVG file?
Inject JAXBContext into spring
Safe dynamic member access
dealing with eval in PHP
Incompatible error while using owasp ESAPI encodeForSQL method to protect SQL injection with Codec MYSQL
AppDomain.CreateInstanceFromAndUnwrap - Unable to cast transparent proxy
Mockito injection not working for constructor AND setter mocks together