diff options
| author | Michael Tänzer <neo@nhng.de> | 2014-06-21 23:56:28 +0200 |
|---|---|---|
| committer | Michael Tänzer <neo@nhng.de> | 2014-06-21 23:56:28 +0200 |
| commit | 7fbd25520ae6d4920453961728b115d8a974eb97 (patch) | |
| tree | e799a9172825a9c38b8f4c3acfba58b19d7a74b5 /www/wot.php | |
| parent | 98d7e6833b3fb094d88b8aea74077e6f646665e8 (diff) | |
| download | cacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.tar.gz cacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.tar.xz cacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.zip | |
bug 1226: Treat the date values as integer
Signed-off-by: Michael Tänzer <neo@nhng.de>
Diffstat (limited to 'www/wot.php')
| -rw-r--r-- | www/wot.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/www/wot.php b/www/wot.php index e1d1572..40a60a6 100644 --- a/www/wot.php +++ b/www/wot.php @@ -199,9 +199,9 @@ function send_reminder() exit; } if ($_SESSION['profile']['ttpadmin'] != 1) { - $_SESSION['assuresomeone']['year'] = mysql_real_escape_string(stripslashes($_POST['year'])); - $_SESSION['assuresomeone']['month'] = mysql_real_escape_string(stripslashes($_POST['month'])); - $_SESSION['assuresomeone']['day'] = mysql_real_escape_string(stripslashes($_POST['day'])); + $_SESSION['assuresomeone']['year'] = intval($_POST['year']); + $_SESSION['assuresomeone']['month'] = intval($_POST['month']); + $_SESSION['assuresomeone']['day'] = intval($_POST['day']); $dob = $_SESSION['assuresomeone']['year'] . '-' . sprintf('%02d',$_SESSION['assuresomeone']['month']) . '-' . sprintf('%02d', $_SESSION['assuresomeone']['day']); if ( $_SESSION['_config']['notarise']['dob'] != $dob) { |