DTux/dtux__serveur-vote-lalis
Archived
1
0
Fork 0
Code Activity

added protection on insert in database

Browse Source
This commit is contained in:
Daniel Tartavel
2022-09-26 11:54:58 +02:00
parent ae357e7e95
commit 943961cca2
3 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
gestion/saisieCandidats.php
View File

@ -12,9 +12,9 @@ $idVote = getpost("idVote");
$candidat = getpost("candidat");
$libelle = getpost("libelle");
if (!empty($idCandidat))
if (!empty($candidat))
{
$query = "INSERT INTO liste_candidats VALUES (0, " . $idVotation . ", " . $idVote . ",'" . $libelle . "', '". $candidat . "')";
$query = "INSERT INTO liste_candidats VALUES (0, " . $db->protect($idVotation) . ", " . $db->protect($idVote) . ",'" . $db->protect($libelle) . "', '". $db->protect($candidat) . "')";
$db->query($query);
header("Location: " . $$base_url . "/" . $path , TRUE, 301);
return;