DTux/dtux__serveur-vote-lalis
Archived
1
0
Fork 0
Code Activity

added protection on insert in database

Browse Source
This commit is contained in:
Daniel Tartavel
2022-09-26 11:54:58 +02:00
parent ae357e7e95
commit 943961cca2
3 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
gestion/saisieVotes.php
View File

@ -16,7 +16,7 @@ if (!empty($idVotation))
{
if (!empty($method) and !empty($libelle))
{
$query = "INSERT INTO liste_votes VALUES (0, '" . $libelle . "', " . $method . "," . $idVotation . ")";
$query = "INSERT INTO liste_votes VALUES (0, '" . $db->protect($libelle) . "', " . $db->protect($method) . "," . $db->protect($idVotation) . ")";
$db->query($query);
header("Location: " . $$base_url . "/" . $path , TRUE, 301);
return;