summaryrefslogtreecommitdiff
path: root/www
diff options
context:
space:
mode:
authorMichael Tänzer <neo@nhng.de>2014-06-21 23:56:28 +0200
committerMichael Tänzer <neo@nhng.de>2014-06-21 23:56:28 +0200
commit7fbd25520ae6d4920453961728b115d8a974eb97 (patch)
treee799a9172825a9c38b8f4c3acfba58b19d7a74b5 /www
parent98d7e6833b3fb094d88b8aea74077e6f646665e8 (diff)
downloadcacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.tar.gz
cacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.tar.xz
cacert-devel-7fbd25520ae6d4920453961728b115d8a974eb97.zip
bug 1226: Treat the date values as integer
Signed-off-by: Michael Tänzer <neo@nhng.de>
Diffstat (limited to 'www')
-rw-r--r--www/wot.php6
1 files changed, 3 insertions, 3 deletions
diff --git a/www/wot.php b/www/wot.php
index e1d1572..40a60a6 100644
--- a/www/wot.php
+++ b/www/wot.php
@@ -199,9 +199,9 @@ function send_reminder()
exit;
}
if ($_SESSION['profile']['ttpadmin'] != 1) {
- $_SESSION['assuresomeone']['year'] = mysql_real_escape_string(stripslashes($_POST['year']));
- $_SESSION['assuresomeone']['month'] = mysql_real_escape_string(stripslashes($_POST['month']));
- $_SESSION['assuresomeone']['day'] = mysql_real_escape_string(stripslashes($_POST['day']));
+ $_SESSION['assuresomeone']['year'] = intval($_POST['year']);
+ $_SESSION['assuresomeone']['month'] = intval($_POST['month']);
+ $_SESSION['assuresomeone']['day'] = intval($_POST['day']);
$dob = $_SESSION['assuresomeone']['year'] . '-' . sprintf('%02d',$_SESSION['assuresomeone']['month']) . '-' . sprintf('%02d', $_SESSION['assuresomeone']['day']);
if ( $_SESSION['_config']['notarise']['dob'] != $dob) {