Browse files

AuraCMS

Update Vulnerability SQL Injection in content.php
  • Loading branch information...
1 parent 28cf576 commit 790f66ffbc4f23a6e13636fc79d0aa1a7d81e747 @auracms committed Jan 14, 2014
View
BIN images/header/1378798712-ban1.png
Deleted file not rendered
View
BIN images/header/1378799316-ban2.png
Deleted file not rendered
View
BIN images/header/1378799702-ban3.png
Deleted file not rendered
View
BIN images/header/1378799866-ban5.png
Deleted file not rendered
View
BIN images/header/1378801253-ban6.png
Deleted file not rendered
View
2 mod/content/content.php
@@ -88,7 +88,7 @@
<h2>Pencarian Berita</h2>
<div class="border" style="text-align:center;"><img src="mod/content/images/banner_searching_data.gif" alt="Searching Data" /></div>';
- $search = !isset($_GET['search']) ? cleanText($_POST['search']) : cleanText($_GET['search']);
+ $search = !isset($_GET['search']) ? mysqli_real_escape_string(cleanText($_POST['search'])) : mysqli_real_escape_string(cleanText($_GET['search']));
if(!$search){
$tengah .= '<div class="error">Maaf Anda Belum Memasukkan Kata Pencarian</div>';

0 comments on commit 790f66f

Please sign in to comment.