harden the sql queries

author: Philip Häusler <msquare@notrademark.de> 2014-12-28 13:44:56 +0100
committer: Philip Häusler <msquare@notrademark.de> 2014-12-28 13:44:56 +0100
commit: 6bede2fd229395f34c321a37efa2ea93e7b1a7ba (patch)
tree: a20c74d5bdddae9e1ec9a988e1ba468371a4a995 /includes/pages/admin_free.php
parent: a6ab81b834fe91b0f0704a7db33e377c8dc63a23 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/includes/pages/admin_free.php b/includes/pages/admin_free.php
index b56da4d1..227769dc 100644
--- a/includes/pages/admin_free.php
+++ b/includes/pages/admin_free.php
@@ -32,7 +32,7 @@ function admin_free() {
       FROM `User` 
       ${angeltypesearch} 
       LEFT JOIN `ShiftEntry` ON `User`.`UID` = `ShiftEntry`.`UID` 
-      LEFT JOIN `Shifts` ON (`ShiftEntry`.`SID` = `Shifts`.`SID` AND `Shifts`.`start` < " . sql_escape(time()) . " AND `Shifts`.`end` > " . sql_escape(time()) . ") 
+      LEFT JOIN `Shifts` ON (`ShiftEntry`.`SID` = `Shifts`.`SID` AND `Shifts`.`start` < '" . sql_escape(time()) . "' AND `Shifts`.`end` > '" . sql_escape(time()) . "') 
       WHERE `User`.`Gekommen` = 1 AND `Shifts`.`SID` IS NULL 
       GROUP BY `User`.`UID` 
       ORDER BY `Nick`");
author	Philip Häusler <msquare@notrademark.de>	2014-12-28 13:44:56 +0100
committer	Philip Häusler <msquare@notrademark.de>	2014-12-28 13:44:56 +0100
commit	6bede2fd229395f34c321a37efa2ea93e7b1a7ba (patch)
tree	a20c74d5bdddae9e1ec9a988e1ba468371a4a995 /includes/pages/admin_free.php
parent	a6ab81b834fe91b0f0704a7db33e377c8dc63a23 (diff)