Skip to content

Commit

Permalink
Fixed Issue #05226 : partially fixed the issue for security breach
Browse files Browse the repository at this point in the history 
git-svn-id: file:///Users/Shitiz/Downloads/lssvn/source/limesurvey@10222 b72ed6b6-b9f8-46b5-92b4-906544132732
  • Loading branch information
Aniessh Sethh committed Jun 7, 2011
1 parent 52b3d57 commit 6ebf9df
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions admin/bounceprocessing.php
View file
Expand Up @@ -74,7 +74,7 @@
$token=explode(": ",$item);
if($surveyidoriginal == $surveyid[1])
{
$bouncequery = "UPDATE ".db_table_name("tokens_$surveyidoriginal")." set emailstatus='bounced' where token='$token[1]';";
$bouncequery = "UPDATE ".db_table_name("tokens_$surveyidoriginal")." set emailstatus='bounced' where token='".db_quote($token[1])."';";
$anish=$connect->Execute($bouncequery);
$bouncetotal++;
}
Expand Down Expand Up @@ -128,7 +128,7 @@
$token=explode(": ",$item);
if($surveyidoriginal == $surveyid[1])
{
$bouncequery = "UPDATE ".db_table_name("tokens_$surveyidoriginal")." set emailstatus='bounced' where token='$token[1]';";
$bouncequery = "UPDATE ".db_table_name("tokens_$surveyidoriginal")." set emailstatus='bounced' where token='".db_quote($token[1])."';";
$anish=$connect->Execute($bouncequery) or safe_die ("Couldn't update sent field<br />$query<br />".$connect->ErrorMsg());
$bouncetotal++;
}
Expand Down

0 comments on commit 6ebf9df

Please sign in to comment.