Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Browse files

Fixed SQL injection (thanks to Sijmen Ruwhof).

  • Loading branch information...
commit 2978ad447e3f81a355405a40e33b57a327f66543 1 parent a9f9c30
@derickr derickr authored
Showing with 1 addition and 1 deletion.
  1. +1 −1  html/include/header.php
View
2  html/include/header.php
@@ -98,7 +98,7 @@ function hits ($key)
function refer ()
{
if (isset ($_SERVER["HTTP_REFERER"]) && !empty ($_SERVER["HTTP_REFERER"])) {
- $ref = $_SERVER["HTTP_REFERER"];
+ $ref = mysql_real_escape_string( $_SERVER["HTTP_REFERER"] );
$res = @mysql_query ("SELECT * FROM refer WHERE refer = '$ref'");
if (@mysql_num_rows ($res) == 0) {
Please sign in to comment.
Something went wrong with that request. Please try again.