diff options
| author | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-04 19:54:51 +0000 |
|---|---|---|
| committer | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-04 19:54:51 +0000 |
| commit | a52ee4a288ec57c2983173460237e4137440a873 (patch) | |
| tree | 3c4101df8fffbbca647ef9d86e6e9410ca1f26e1 /www-ssl/admin/schichtplan.php | |
| parent | 34b50a61f8ec080d66449b7c644e5098102e2145 (diff) | |
SQL injektion behoben
git-svn-id: svn://svn.cccv.de/engel-system@198 29ba0400-6e00-0410-a75a-ca02368028f8
Diffstat (limited to 'www-ssl/admin/schichtplan.php')
| -rwxr-xr-x | www-ssl/admin/schichtplan.php | 24 |
1 files changed, 12 insertions, 12 deletions
diff --git a/www-ssl/admin/schichtplan.php b/www-ssl/admin/schichtplan.php index 9c904bb2..12c767c2 100755 --- a/www-ssl/admin/schichtplan.php +++ b/www-ssl/admin/schichtplan.php @@ -50,7 +50,7 @@ for( $i = 0; $i < $rowcount; $i++) "value=\"". mysql_result($Erg, $i, "SID"). "\"></td>\n"; echo "\t\t<td>".mysql_result($Erg, $i, "DateS")."</td>\n"; - $sql2= "SELECT `Name` FROM `Room` WHERE `RID`=\"".mysql_result($Erg, $i, "RID")."\""; + $sql2= "SELECT `Name` FROM `Room` WHERE `RID`='".mysql_result($Erg, $i, "RID")."'"; $Erg2 = mysql_query($sql2, $con); if( mysql_num_rows($Erg2) > 0) echo "\t\t<td>".mysql_result($Erg2, 0, "Name")."</td>\n"; @@ -83,7 +83,7 @@ case 'change': else { - $sql = "SELECT * FROM `Shifts` WHERE (`SID` = \"". $_GET["SID"]. "\" )"; + $sql = "SELECT * FROM `Shifts` WHERE (`SID` = '". $_GET["SID"]. "' )"; $Erg = mysql_query($sql, $con); echo "Schicht abändern: <br>\n"; @@ -138,7 +138,7 @@ case 'change': echo "<br><hr>\n\n\n\n"; //Freie Engelschichten - $sql3 = "SELECT TID FROM `ShiftEntry` WHERE SID=". $_GET["SID"]. " AND UID=0"; + $sql3 = "SELECT `TID` FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND `UID`='0'"; $Erg3 = mysql_query($sql3, $con); $rowcount = mysql_num_rows($Erg3); @@ -153,7 +153,7 @@ case 'change': echo "<br><hr>\n\n\n\n"; //Ausgabe eingetragener schischten - $sql3 = "SELECT * FROM `ShiftEntry` WHERE SID=". $_GET["SID"]. " AND NOT UID=0"; + $sql3 = "SELECT * FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "' AND NOT `UID`='0'"; $Erg3 = mysql_query($sql3, $con); $rowcount = mysql_num_rows($Erg3); @@ -180,7 +180,7 @@ case 'change': echo "<select name=\"UIDs\">\n"; echo "\t<option value=\"0\">--neu--</option>\n"; - $usql="select * from User order by Nick"; + $usql="SELECT * FROM `User` ORDER BY `Nick`"; $uErg = mysql_query($usql, $con); $urowcount = mysql_num_rows($uErg); for ($k=0; $k<$urowcount; $k++) @@ -240,15 +240,15 @@ case 'engeladd': if( mysql_num_rows($ERG) != 0 ) { $chSQL = "UPDATE `ShiftEntry` SET ". - "`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' "; - $chSQL .= "WHERE (`SID`='". $_GET["SID"]. "' AND ". + "`UID`='". $_GET["UIDs"]. "', `Comment`='shift added by ".$_SESSION['Nick']."' ". + "WHERE (`SID`='". $_GET["SID"]. "' AND ". "`TID`='". $_GET["TID"]. "' AND `UID`='0' ) LIMIT 1"; } else { - $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES ("; - $chSQL .= "'". $_GET["SID"]. "', '". $_GET["TID"]. "', ". - "'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')"; + $chSQL = "INSERT INTO `ShiftEntry` (`SID`, `TID`, `UID`, `Comment`) VALUES (". + "'". $_GET["SID"]. "', '". $_GET["TID"]. "', ". + "'". $_GET["UIDs"]. "', 'shift added by ".$_SESSION['Nick']."')"; } echo "Es wird folgende Schicht zusätzlich eingetragen:<br>\n"; echo "Engel: ".UID2Nick($_GET["UIDs"])."<br>\n"; @@ -305,8 +305,8 @@ case 'changesave': break; case 'delete': - $chSQL = "DELETE FROM `Shifts` WHERE `SID`=". $_GET["SID"]. " LIMIT 1"; - $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`=". $_GET["SID"]; + $chSQL = "DELETE FROM `Shifts` WHERE `SID`='". $_GET["SID"]. "' LIMIT 1"; + $ch2SQL = "DELETE FROM `ShiftEntry` WHERE `SID`='". $_GET["SID"]. "'"; SetHeaderGo2Back(); break; |