Popravek zaradi poskusa napada preko ankete id
This commit is contained in:
Robert
parent
07044d86ce
commit
ba680b866e
@ -604,6 +604,10 @@ function preveriTipHierarhije()
|
|||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// User id mora biti številka in ne sme bit 0, anketa ne sme vsebovati presledkov, ker gre za sql injection drugače
|
||||||
|
if(!is_numeric($global_user_id) || $global_user_id < 1 || preg_match('/(\s)/', $anketa)){
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
$sql = sisplet_query("SELECT type FROM srv_hierarhija_users WHERE user_id='" . $global_user_id . "' AND anketa_id='" . $anketa . "'");
|
$sql = sisplet_query("SELECT type FROM srv_hierarhija_users WHERE user_id='" . $global_user_id . "' AND anketa_id='" . $anketa . "'");
|
||||||
|
|
||||||
@ -698,6 +702,11 @@ function getSurveyIdFromHash($hash){
|
|||||||
|
|
||||||
$ank_id = null;
|
$ank_id = null;
|
||||||
|
|
||||||
|
// hash ne sme vsebovati presledkov
|
||||||
|
if(preg_match('/(\s)/', $hash)){
|
||||||
|
return false;
|
||||||
|
}
|
||||||
|
|
||||||
$sql = sisplet_query("SELECT id FROM srv_anketa WHERE hash='".$hash."'");
|
$sql = sisplet_query("SELECT id FROM srv_anketa WHERE hash='".$hash."'");
|
||||||
if (mysqli_num_rows($sql) > 0) {
|
if (mysqli_num_rows($sql) > 0) {
|
||||||
$row = mysqli_fetch_array($sql);
|
$row = mysqli_fetch_array($sql);
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user