Skip to content
Permalink
Browse files Browse the repository at this point in the history
Fix login SQL injection
  • Loading branch information
Dovgalyuk committed Aug 10, 2015
1 parent 09c36d8 commit 448e988
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion site/procedures.php
Expand Up @@ -493,7 +493,7 @@ function registerUser($postLogin, $postPassword)
$login = strip_tags($postLogin);
if ($login != $postLogin)
$err[] = "Логин содержит некорректные символы";
$login = mysqli_real_escape_string($link, $login);
$postLogin = mysqli_real_escape_string($link, $postLogin);
if (strlen($postLogin) < 3 or strlen($postLogin > 30))
$err[] = "Логин должен быть не меньше 3-х символов и не больше 30";

Expand Down

0 comments on commit 448e988

Please sign in to comment.