diff options
| author | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-04 19:54:51 +0000 |
|---|---|---|
| committer | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2006-12-04 19:54:51 +0000 |
| commit | a52ee4a288ec57c2983173460237e4137440a873 (patch) | |
| tree | 3c4101df8fffbbca647ef9d86e6e9410ca1f26e1 /www-ssl/admin/user2.php | |
| parent | 34b50a61f8ec080d66449b7c644e5098102e2145 (diff) | |
SQL injektion behoben
git-svn-id: svn://svn.cccv.de/engel-system@198 29ba0400-6e00-0410-a75a-ca02368028f8
Diffstat (limited to 'www-ssl/admin/user2.php')
| -rwxr-xr-x | www-ssl/admin/user2.php | 16 |
1 files changed, 8 insertions, 8 deletions
diff --git a/www-ssl/admin/user2.php b/www-ssl/admin/user2.php index e1792d4e..ce349f40 100755 --- a/www-ssl/admin/user2.php +++ b/www-ssl/admin/user2.php @@ -48,7 +48,7 @@ if (IsSet($_GET["action"])) elseif ($_POST["Type"] == "Secure") { $SQL2 = "UPDATE `UserCVS` SET "; - $SQL_CVS = "SELECT * FROM `UserCVS` WHERE UID=". $_POST["enterUID"]; + $SQL_CVS = "SELECT * FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "'"; $Erg_CVS = mysql_query($SQL_CVS, $con); $CVS_Data = mysql_fetch_array($Erg_CVS); $CVS_Data_i = 1; @@ -59,7 +59,7 @@ if (IsSet($_GET["action"])) $CVS_Data_i++; } $SQL2 = substr( $SQL2, 0, strlen($SQL2)-2 ); - $SQL2.= " WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + $SQL2.= " WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; echo "<br>Secure-"; $Erg = db_query($SQL2, "change user CVS"); if ($Erg == 1) { @@ -79,7 +79,7 @@ if (IsSet($_GET["action"])) if (IsSet($_POST["enterUID"])) { echo "delate User..."; - $SQL="DELETE FROM `User` WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + $SQL="DELETE FROM `User` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $Erg = db_query($SQL, "User delete"); if ($Erg == 1) { echo "Änderung wurde gesichert...\n"; @@ -88,7 +88,7 @@ if (IsSet($_GET["action"])) } echo "<br>\ndelate UserCVS..."; - $SQL2="DELETE FROM `UserCVS` WHERE `UID` = '". $_POST["enterUID"]. "' LIMIT 1;"; + $SQL2="DELETE FROM `UserCVS` WHERE `UID`='". $_POST["enterUID"]. "' LIMIT 1;"; $Erg = db_query($SQL2, "User CVS delete"); if ($Erg == 1) { echo "Änderung wurde gesichert...\n"; @@ -97,8 +97,8 @@ if (IsSet($_GET["action"])) } echo "<br>\ndelate UserEntry..."; - $SQL3="UPDATE `ShiftEntry` SET `UID` = '0', `Comment` = NULL ". - "WHERE `UID` = '". $_POST["enterUID"]. "';"; + $SQL3="UPDATE `ShiftEntry` SET `UID`='0', `Comment`=NULL ". + "WHERE `UID`='". $_POST["enterUID"]. "';"; $Erg = db_query($SQL3, "delate UserEntry"); if ($Erg == 1) { echo "Änderung wurde gesichert...\n"; @@ -112,7 +112,7 @@ if (IsSet($_GET["action"])) case "newpw": echo "Bitte neues Kennwort für <b>"; // Get Nick - $USQL = "SELECT * FROM User WHERE UID=". $_GET["eUID"]; + $USQL = "SELECT * FROM `User` WHERE `UID`='". $_GET["eUID"]. "'"; $Erg = mysql_query($USQL, $con); echo mysql_result($Erg, 0, "Nick"); echo "</b> eingeben:<br>"; @@ -129,7 +129,7 @@ if (IsSet($_GET["action"])) { // beide Passwoerter passen... $_POST["ePasswort"] = PassCrypt($_POST["ePasswort"]); $SQL = "UPDATE `User` SET `Passwort`='". $_POST["ePasswort"]. "' ". - "WHERE `UID` = '". $_POST["eUID"]. "'"; + "WHERE `UID`='". $_POST["eUID"]. "'"; $Erg = db_query($SQL, "User new passwort"); if ($Erg == 1) { echo "Änderung wurde gesichert...\n"; |