[openstreetmap-website] Insufficient input checking on note creation (#311)
Toby Murray
notifications at github.com
Thu Jun 20 17:31:47 UTC 2013
Sending non-numeric characters for lat/lon when creating a note results in the note getting created at 0,0. To reproduce on the dev API:
```curl --data "lat=a&lon=b&text=testtesttest" http://master.apis.dev.openstreetmap.org/api/0.6/notes```
Instead, this should return an error, probably the same as is returned when lat/lon are out of bounds.
---
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/issues/311
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20130620/295e3ae6/attachment.html>
More information about the rails-dev
mailing list