Input validation and XSS prevention audit #34

New Issue

Open

opened 2026-05-21 23:00:17 +00:00 by jmiller · 0 comments

jmiller commented 2026-05-21 23:00:17 +00:00

Owner

Copy Link

Copy Source

CSV import needs injection prevention. Contact form needs rate limiting and HTMLPurifier. All outputs need escape() audit. Need CSP headers for inline map scripts. File upload MIME/size validation.

CSV import needs injection prevention. Contact form needs rate limiting and HTMLPurifier. All outputs need escape() audit. Need CSP headers for inline map scripts. File upload MIME/size validation.

jmiller referenced this issue from a commit 2026-05-21 23:09:23 +00:00

feat(production): fix all production gaps (#30-#35)

Sign in to join this conversation.

Labels

Clear labels

area/admin

Administrator interface

area/component

Core component (com_mokojoomstorelocator)

area/database

Database schema or queries

area/frontend

Site/frontend display

area/import-export

Data import/export features

area/module-map

Map module (mod_mokojoomstorelocator_map)

area/module-search

Search module (mod_mokojoomstorelocator_search)

priority/critical

Must have for v1.0

priority/high

Important for initial release

priority/low

Future enhancement

priority/medium

Nice to have for v1.0

type/bug

Something is broken

type/docs

Documentation

type/enhancement

Improvement to existing feature

type/feature

New feature or functionality

No labels

Priority Medium

Type Security

Milestone

No items

No Milestone

Assignees

Clear assignees

jmiller (Jonathan Miller)

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: MokoConsulting/MokoSuiteStoreLocator#34