diff options
| author | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-03 22:13:38 +0000 |
|---|---|---|
| committer | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-03 22:13:38 +0000 |
| commit | 30ee094c864af66d13694c7804755f9539e5b626 (patch) | |
| tree | 6c03280a2522a23b9e179be9ae071f0aa0e3fa35 | |
| parent | 6ac183b6fec64135d149f9bb5899ae76fb187bb0 (diff) | |
SQL injektion behoben
git-svn-id: svn://svn.cccv.de/engel-system@195 29ba0400-6e00-0410-a75a-ca02368028f8
| -rwxr-xr-x | www-ssl/nonpublic/news_comments.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/www-ssl/nonpublic/news_comments.php b/www-ssl/nonpublic/news_comments.php index 99b42072..6e303cea 100755 --- a/www-ssl/nonpublic/news_comments.php +++ b/www-ssl/nonpublic/news_comments.php @@ -22,7 +22,7 @@ if( IsSet( $_GET["text"])) } } -$SQL = "SELECT * FROM news_comments where Refid = ". $_GET["nid"]. " ORDER BY 'ID'"; +$SQL = "SELECT * FROM news_comments where Refid = '". $_GET["nid"]. "' ORDER BY 'ID'"; $Erg = mysql_query($SQL, $con); echo mysql_error( $con); // anzahl zeilen |