You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Server accepts invalid/non-existent run name. It displays a list of reports that appears to be all reports from all runs.
CodeChecker version
[INFO 2025-02-26 18:51] - CodeChecker web version:
------------------------------------------------------------------------------
Kind | Version
------------------------------------------------------------------------------
Base package version | 6.24.5
Package build date | 2025-01-21T15:37
Git commit ID (hash) | 5914f3a98336823c3a0a1061d84832ed88822469
Git tag information | 6.24.5
Server supported Thrift API version | 6.59
Client Thrift API version | 6.59
------------------------------------------------------------------------------
Describe the bug
Server accepts invalid/non-existent run name. It displays a list of reports that appears to be all reports from all runs.
CodeChecker version
To Reproduce
Go to a URL on the server with an invalid or non-existent run name, e.g. https://codechecker.example.com/myproduct/reports?run=bogus-run
Expected behaviour
I expect a page stating that the requested run does not exist.
Desktop (please complete the following information)
Additional context
Tested also on 6.23.1. I also wonder if other URL params lack sanity checks.
The text was updated successfully, but these errors were encountered: