From: <lep...@us...> - 2010-04-05 15:19:23
|
Revision: 12012 http://amsn.svn.sourceforge.net/amsn/?rev=12012&view=rev Author: lephilousophe Date: 2010-04-05 15:19:17 +0000 (Mon, 05 Apr 2010) Log Message: ----------- Fix to prevent SQL injection Modified Paths: -------------- trunk/www/getURL.php Modified: trunk/www/getURL.php =================================================================== --- trunk/www/getURL.php 2010-04-04 08:51:00 UTC (rev 12011) +++ trunk/www/getURL.php 2010-04-05 15:19:17 UTC (rev 12012) @@ -4,7 +4,7 @@ if(!isset($_GET['id'])) { die('ERROR! No file specified!'); } -$file=getFileURL($_GET['id']); +$file=getFileURL((int) $_GET['id']); if($file == '') { die('ERROR! Bad file specified!'); This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site. |