Menu
▾
▴
[ModCVS] CVS: PN_phpBB_14/html/modules/phpBB_14 viewtopic.php,1.101,1.102
|
From: Andreas K. <la...@us...> - 2003-03-07 20:12:23
|
Update of /cvsroot/pn-modules/PN_phpBB_14/html/modules/phpBB_14
In directory sc8-pr-cvs1:/tmp/cvs-serv18272/PN_phpBB_14/html/modules/phpBB_14
Modified Files:
viewtopic.php
Log Message:
fixed missing input sanitizing (thx to Marc Bradshaw)
Index: viewtopic.php
===================================================================
RCS file: /cvsroot/pn-modules/PN_phpBB_14/html/modules/phpBB_14/viewtopic.php,v
retrieving revision 1.101
retrieving revision 1.102
diff -C2 -d -r1.101 -r1.102
*** viewtopic.php 26 Jan 2003 12:31:56 -0000 1.101
--- viewtopic.php 7 Mar 2003 19:55:59 -0000 1.102
***************
*** 73,80 ****
// some input checking
! list($topic, $forum) = pnVarCleanFromInput('topic', 'forum');
if ((!isset($forum) || !is_numeric($forum))){
$forum = '';
}
--- 73,84 ----
// some input checking
! list($topic, $forum, $start) = pnVarCleanFromInput('topic', 'forum', 'start');
if ((!isset($forum) || !is_numeric($forum))){
$forum = '';
+ }
+
+ if ((isset($start) && !is_numeric($start))){
+ unset($start);
}
|
