Skip to content

Commit

Permalink
(cp 9028c75) fixes #825, check user input on Batch Manager, unit mode…
Browse files Browse the repository at this point in the history 
…, to prevent SQL injection
  • Loading branch information
@plegall
plegall committed Dec 18, 2017
1 parent c3b4c6f commit f7c8e0a
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions admin/batch_manager_unit.php
View file
Expand Up @@ -47,6 +47,7 @@

if (isset($_POST['submit']))
{
check_input_parameter('element_ids', $_POST, false, '/^\d+(,\d+)*$/');
$collection = explode(',', $_POST['element_ids']);

$datas = array();
Expand Down

0 comments on commit f7c8e0a

Please sign in to comment.