diff options
| -rw-r--r-- | picture.php | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/picture.php b/picture.php index a57ed9552..b59cb1a87 100644 --- a/picture.php +++ b/picture.php @@ -42,6 +42,12 @@ if ( isset( $page['cat'] ) and is_numeric( $page['cat'] ) ) { check_restrictions( $page['cat'] ); } + +if (!is_numeric($_GET['image_id'])) +{ + die('Hacking attempt on "image_id" GET parameter'); +} + //---------------------------------------- incrementation of the number of hits $query = ' UPDATE '.IMAGES_TABLE.' |