cacert
/
cacert-webdb
9
0
Fork 0
Code Issues Pull Requests 5 Projects Releases 3 Wiki Activity

Fixed a SQL injection

Browse Source
pull/1/head
root 17 years ago
parent df42c88a5b
commit 7bfa208a4e
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File

2
pages/account/28.php
Unescape Escape View File

@ -13,7 +13,7 @@
PARTICULAR PURPOSE. See the License for more details. PARTICULAR PURPOSE. See the License for more details.
*/ ?> */ ?>
<? <?
$query = "select * from `orginfo` where `id`='".$_REQUEST[orgid]."'"; $query = "select * from `orginfo` where `id`='".intval($_REQUEST[orgid])."'";
$row = mysql_fetch_assoc(mysql_query($query)); $row = mysql_fetch_assoc(mysql_query($query));
?> ?>
<form method="post" action="account.php"> <form method="post" action="account.php">

Write Preview
Loading…
Cancel
Save