[Lsb-messages] /var/www/bzr/lsb/devel/dbadmin r257: A couple of fixes similar to bug #3556
Denis Silakov
denis.silakov at rosalab.ru
Tue May 22 15:41:20 UTC 2012
------------------------------------------------------------
revno: 257
committer: Denis Silakov <denis.silakov at rosalab.ru>
branch nick: dbadmin
timestamp: Tue 2012-05-22 19:41:20 +0400
message:
A couple of fixes similar to bug #3556
modified:
browse/class.php
browse/int_single.php
-------------- next part --------------
=== modified file 'browse/class.php'
--- a/browse/class.php 2012-05-17 18:51:11 +0000
+++ b/browse/class.php 2012-05-22 15:41:20 +0000
@@ -43,9 +43,9 @@
$_REQUEST['CIid'] = $_REQUEST['id'];
$Tid = isset($id) ? $id : 0;
case "list-byid" :
- check_request_literal_params("CIname");
check_request_numeric_params("CIid");
if( isset($_REQUEST['CIname']) ) {
+ check_request_literal_params("CIname");
display_single_class($_REQUEST['CIname'], $_REQUEST['CIid']);
}
else {
=== modified file 'browse/int_single.php'
--- a/browse/int_single.php 2012-05-17 18:51:11 +0000
+++ b/browse/int_single.php 2012-05-22 15:41:20 +0000
@@ -166,6 +166,7 @@
check_request_literal_params("Iname");
$select = "SELECT Iname,Iunmangled FROM Interface WHERE (Iname LIKE '".$_REQUEST['Iname']."' OR Iunmangled LIKE '".$_REQUEST['Iname']."') ";
if( isset($_REQUEST['Ilibrary']) ) {
+ check_request_literal_params("Ilibrary");
$select.= "AND Ilibrary='".$_REQUEST['Ilibrary']."'";
}
check_request_literal_params("Ilibrary");
More information about the lsb-messages
mailing list