summaryrefslogtreecommitdiff
path: root/pages/account/55.php
diff options
context:
space:
mode:
authorBenny Baumann <BenBE@geshi.org>2014-04-30 18:27:23 +0200
committerBenny Baumann <BenBE@geshi.org>2014-04-30 20:18:56 +0200
commit5303f27029a70f45b46e292e9e8262f6111444c2 (patch)
treecaeb75be001e7f73c7130896d188654c820f5cee /pages/account/55.php
parent8cdfaa2216d2e052bd5e9098e9e4c34e7b546e9d (diff)
downloadcacert-devel-5303f27029a70f45b46e292e9e8262f6111444c2.tar.gz
cacert-devel-5303f27029a70f45b46e292e9e8262f6111444c2.tar.xz
cacert-devel-5303f27029a70f45b46e292e9e8262f6111444c2.zip
bug 1138: And yet another bunch of missing escapes
Diffstat (limited to 'pages/account/55.php')
-rw-r--r--pages/account/55.php10
1 files changed, 5 insertions, 5 deletions
diff --git a/pages/account/55.php b/pages/account/55.php
index 7e9710c..d110601 100644
--- a/pages/account/55.php
+++ b/pages/account/55.php
@@ -58,7 +58,7 @@
<?
$query = "SELECT `CP`.`pass_date`, `CT`.`type_text`, `CV`.`test_text` ".
" FROM `cats_passed` AS CP, `cats_variant` AS CV, `cats_type` AS CT ".
- " WHERE `CP`.`variant_id`=`CV`.`id` AND `CV`.`type_id`=`CT`.`id` AND `CP`.`user_id` ='".(int)$user_id."'".
+ " WHERE `CP`.`variant_id`=`CV`.`id` AND `CV`.`type_id`=`CT`.`id` AND `CP`.`user_id` ='".intval($user_id)."'".
" ORDER BY `CP`.`pass_date`";
$res = mysql_query($query);
@@ -71,9 +71,9 @@
}
?>
<tr>
- <td class="DataTD"><?=$row[0]?></td>
- <td class="DataTD"><?=$row[1]?></td>
- <td class="DataTD"><?=$row[2]?></td>
+ <td class="DataTD"><?=sanitizeHTML($row[0])?></td>
+ <td class="DataTD"><?=sanitizeHTML($row[1])?></td>
+ <td class="DataTD"><?=sanitizeHTML($row[2])?></td>
</tr>
<? }
?>
@@ -84,7 +84,7 @@
<?
if ($_SESSION['profile']['admin'] == 1 && array_key_exists('userid',$_REQUEST) && intval($_REQUEST['userid']) > 0) {
?>
- <tr><td colspan="3" class="DataTD"><a href="account.php?id=43&amp;userid=<?=$user_id ?>">back</a></td></tr>
+ <tr><td colspan="3" class="DataTD"><a href="account.php?id=43&amp;userid=<?=intval($user_id)?>">back</a></td></tr>
<? } else {
$query = 'SELECT `u`.id, `u`.`assurer`, SUM(`points`) FROM `users` AS `u`, `notary` AS `n` '.
' WHERE `u`.`id` = \''.(int)intval($_SESSION['profile']['id']).'\' AND `n`.`to` = `u`.`id` AND `expire` < now() and and `n`.`deleted` = 0'.