Permalink
Browse files

fix sql injection security vulnerability; reported by Nicky [#1394 st…

…ate:resolved] [#1395 state:resolved]
  • Loading branch information...
dleffler committed Nov 6, 2016
1 parent 4327ea9 commit fffb2038de4c603931b785a4c3ec69cfd06181ba
Showing with 1 addition and 1 deletion.
  1. +1 −1 framework/core/controllers/expController.php
@@ -772,7 +772,7 @@ public function manage_ranks() {
$rank = 1;
foreach ($this->params['rerank'] as $id) {
$modelname = $this->params['model'];
$obj = new $modelname($id);
$obj = new $modelname(intval($id));
$obj->rank = $rank;
$obj->save(false, true);
$rank++;

2 comments on commit fffb203

@droidsec-cn

This comment has been minimized.

Show comment
Hide comment
@droidsec-cn

droidsec-cn Nov 11, 2016

CVEID: CVE-2016-9272
Credit: Nicky of Tencent Security Platform Department

droidsec-cn replied Nov 11, 2016

CVEID: CVE-2016-9272
Credit: Nicky of Tencent Security Platform Department

@fgeek

This comment has been minimized.

Show comment
Hide comment
@fgeek

fgeek Nov 19, 2016

Please use CVE-2016-9272 for this vulnerability. Assigned in: http://www.openwall.com/lists/oss-security/2016/11/18/14

fgeek replied Nov 19, 2016

Please use CVE-2016-9272 for this vulnerability. Assigned in: http://www.openwall.com/lists/oss-security/2016/11/18/14

Please sign in to comment.