From a52ee4a288ec57c2983173460237e4137440a873 Mon Sep 17 00:00:00 2001
From: cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8>
Date: Mon, 4 Dec 2006 19:54:51 +0000
Subject: SQL injektion behoben

git-svn-id: svn://svn.cccv.de/engel-system@198 29ba0400-6e00-0410-a75a-ca02368028f8
---
 www-ssl/admin/free.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'www-ssl/admin/free.php')

diff --git a/www-ssl/admin/free.php b/www-ssl/admin/free.php
index aadde44a..604660a1 100755
--- a/www-ssl/admin/free.php
+++ b/www-ssl/admin/free.php
@@ -35,7 +35,7 @@ $SQL =  "SELECT Shifts.*, ShiftEntry.*, User.Nick ".
 	"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );";		
 */
 $SQL =  "SELECT Shifts.*, ShiftEntry.* ".
-	"FROM Shifts INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ".
+	"FROM `Shifts` INNER JOIN ShiftEntry ON Shifts.SID = ShiftEntry.SID ".
 	"WHERE (Shifts.DateS<=Now() AND Shifts.DateE>=Now() );";		
 
 //SELECT User.Nick, Schichtplan.*, Schichtbelegung. * FROM User LEFT JOIN Schichtbelegung ON User.UID=Schichtbelegung.UID, Schichtplan LEFT JOIN Schichtbelegung ON Schichtplan.SID = Schichtbelegung.SID WHERE Schichtplan.Date < now() and Schichtplan.EndDate > now() ORDER BY Nick
-- 
cgit v1.2.3-70-g09d2