phpBMS

Changeset 725 for trunk/phpbms/include

Show
Ignore:
Timestamp:
01/06/10 22:48:56 (2 years ago)
Author:
brieb
Message:
  • Fixed more path disclosure and possible SQL injection bugs in the load search class
Files:
1 modified

Legend:

Unmodified
Added
Removed

  • trunk/phpbms/include/common_functions.php

    r703 r725  
    304304                        `".$tablerecord["maintable"]."` 
    305305                WHERE 
    306                         `id` = ".$id; 
     306                        `id` = ".((int) $id); 
    307307 
    308308        $queryresult = $db->query($querystatement); 
phpBMS vulnerability assesment provided by Orvant Inc. Copyright © 2010 Kreotek, LLC. All Rights reserved.