Skip to content
Snippets Groups Projects
Commit 8c3158cf authored by Regis Houssin's avatar Regis Houssin
Browse files

Fix: sql injection

parent 380a8109
Branches
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
htdocs/admin/tools/export.php
+ 1
1
View file @ 8c3158cf
......@@ -127,7 +127,7 @@ if ($what == 'mysql')
if (! empty($dolibarr_main_db_port)) $param.=" -P ".$dolibarr_main_db_port;
if (! GETPOST("use_transaction")) $param.=" -l --single-transaction";
if (GETPOST("disable_fk")) $param.=" -K";
if (GETPOST("sql_compat") && GETPOST("sql_compat") != 'NONE') $param.=" --compatible=".GETPOST("sql_compat","alpha");
if (GETPOST("sql_compat") && GETPOST("sql_compat") != 'NONE') $param.=" --compatible=".GETPOST("sql_compat","special");
if (GETPOST("drop_database")) $param.=" --add-drop-database";
if (GETPOST("sql_structure"))
{
......
htdocs/core/lib/functions.lib.php
+ 6
0
View file @ 8c3158cf
......@@ -194,6 +194,12 @@ function GETPOST($paramname,$check='',$method=0)
// '../' is dangerous because it allows dir transversals
if (preg_match('/"/',$out)) $out='';
else if (preg_match('/\.\.\//',$out)) $out='';
else if (preg_match('/(\s)*|(%20)*/',$out)) $out='';
}
elseif ($check == 'special')
{
$out=trim($out);
if (preg_match('/(\s)*|(%20)*/',$out)) $out='';
}
elseif ($check == 'array')
{
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment