merge r30864 from trunk to branch 2.6
bug 3186: improved security on search.php git-svn-id: http://piwigo.org/svn/branches/2.6@30866 68402e56-0260-453c-a942-63ccdbb3a9ee
This commit is contained in:
plegall
parent
c07d55df32
commit
7ab6061552
2 changed files with 5 additions and 3 deletions
|
|
@ -1887,9 +1887,9 @@ function check_input_parameter($param_name, $param_array, $is_array, $pattern, $
|
|||
fatal_error('[Hacking attempt] the input parameter "'.$param_name.'" should be an array');
|
||||
}
|
||||
|
||||
foreach ($param_value as $item_to_check)
|
||||
foreach ($param_value as $key => $item_to_check)
|
||||
{
|
||||
if (!preg_match($pattern, $item_to_check))
|
||||
if (!preg_match(PATTERN_ID, $key) or !preg_match($pattern, $item_to_check))
|
||||
{
|
||||
fatal_error('[Hacking attempt] an item is not valid in input parameter "'.$param_name.'"');
|
||||
}
|
||||
|
|
|
|||
|
|
@ -105,6 +105,8 @@ if (isset($_POST['submit']))
|
|||
}
|
||||
|
||||
// dates
|
||||
check_input_parameter('date_type', $_POST, false, '/^date_(creation|available)$/');
|
||||
|
||||
$type_date = $_POST['date_type'];
|
||||
|
||||
if (!empty($_POST['start_year']))
|
||||
|
|
@ -144,7 +146,7 @@ if (isset($_POST['submit']))
|
|||
INSERT INTO '.SEARCH_TABLE.'
|
||||
(rules, last_seen)
|
||||
VALUES
|
||||
(\''.serialize($search).'\', NOW())
|
||||
(\''.pwg_db_real_escape_string(serialize($search)).'\', NOW())
|
||||
;';
|
||||
pwg_query($query);
|
||||
|
||||
|
|
|
|||
Loading…
Reference in a new issue