Skip to content
Permalink
Browse files Browse the repository at this point in the history
request #15131: SQL injection in the planning edition panel
Change-Id: Ifa9971534640010198196f34544f97eb8c7cc9c9
  • Loading branch information
LeSuisse committed Jul 20, 2020
1 parent 65d246c commit d6b2f8b
Showing 1 changed file with 3 additions and 1 deletion.
@@ -1,6 +1,6 @@
<?php
/**
* Copyright (c) Enalean, 2012. All Rights Reserved.
* Copyright (c) Enalean, 2012-Present. All Rights Reserved.
*
* This file is a part of Tuleap.
*
Expand Down Expand Up @@ -35,6 +35,8 @@ public function save($cardwall_tracker_id, $tracker_id, $field_id, $value_id, $c
{
$cardwall_tracker_id = $this->da->escapeInt($cardwall_tracker_id);
$tracker_id = $this->da->escapeInt($tracker_id);
$value_id = $this->da->escapeInt($value_id);
$column_id = $this->da->escapeInt($column_id);
if ($field_id === null) {
$field_id = " NULL ";
} else {
Expand Down

0 comments on commit d6b2f8b

Please sign in to comment.