Permalink
Browse files

fixes #825, check user input on Batch Manager, unit mode, to prevent …

…SQL injection
  • Loading branch information...
plegall committed Dec 18, 2017
1 parent 77f02bf commit 9028c75c1f03c43a0c96fe80e5742f6c040fe905
Showing with 1 addition and 0 deletions.
  1. +1 −0 admin/batch_manager_unit.php
@@ -47,6 +47,7 @@
if (isset($_POST['submit']))
{
check_input_parameter('element_ids', $_POST, false, '/^\d+(,\d+)*$/');
$collection = explode(',', $_POST['element_ids']);
$datas = array();

0 comments on commit 9028c75

Please sign in to comment.