Skip to content
Permalink
Browse files Browse the repository at this point in the history
adding patched game.php for SQLI vulnerability in lid parameter.
  • Loading branch information
Vaughan Montgomery committed Oct 1, 2008
1 parent a4ae2e8 commit 6e57683
Showing 1 changed file with 6 additions and 0 deletions.
6 changes: 6 additions & 0 deletions game.php
Expand Up @@ -38,6 +38,12 @@
$xoopsOption['template_main'] = 'flashgames_game.html';

$lid = $HTTP_GET_VARS['lid'];

if (!is_numeric($lid) or $lid<=0)
{ exit;
}


if(!$full) {
include(XOOPS_ROOT_PATH."/header.php");
// OpenTable();
Expand Down

0 comments on commit 6e57683

Please sign in to comment.