noalyss-commit
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Noalyss-commit] [noalyss] 57/162: Security fix : f_id is a number

From: Dany De Bontridder
Subject: [Noalyss-commit] [noalyss] 57/162: Security fix : f_id is a number
Date: Sat, 11 Jul 2020 13:23:35 -0400 (EDT) 
sparkyx pushed a commit to annotated tag E-4
in repository noalyss.

commit 6482988c75ace6b35f1227bbeaa3aea7e426cbac
Author: Dany De Bontridder <danydb@noalyss.eu>
AuthorDate: Sat Jun 2 08:28:44 2018 +0200

    Security fix : f_id is a number
---
 include/category_card.inc.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/category_card.inc.php b/include/category_card.inc.php
index 4e1b993..ce26bc1 100644
--- a/include/category_card.inc.php
+++ b/include/category_card.inc.php
@@ -34,7 +34,7 @@ global $http;
 
 $str_dossier=Dossier::get();
 
-$root="?".http_build_query(["ac"=>$http->request("ac"),"sb"=>"detail","f_id"=>$http->request("f_id")]);
+$root="?".http_build_query(["ac"=>$http->request("ac"),"sb"=>"detail","f_id"=>$http->request("f_id","number")]);
 $root.="&".$str_dossier;
 
 $ss_action=$http->request("sc", "string", "dc");
reply via email to
[Prev in Thread] Current Thread [Next in Thread]