From d410a320d72e569b5148b0a9a0da39831a4912e9 Mon Sep 17 00:00:00 2001
From: jfefe <jfefe@users.noreply.github.com>
Date: Wed, 10 May 2017 20:32:54 +0200
Subject: [PATCH] WIP #6504: CVE-2017-7886

'defaultlang' attribute was not filtered before database request which cause an SQL injection.
---
 htdocs/core/class/translate.class.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/htdocs/core/class/translate.class.php b/htdocs/core/class/translate.class.php
index 89ab0019865..5c5c1062d25 100644
--- a/htdocs/core/class/translate.class.php
+++ b/htdocs/core/class/translate.class.php
@@ -439,7 +439,7 @@ class Translate
 		if (! $found)
 		{
     		// Overwrite translation with database read
-            $sql="SELECT transkey, transvalue FROM ".MAIN_DB_PREFIX."overwrite_trans where lang='".$this->defaultlang."'";            
+            $sql="SELECT transkey, transvalue FROM ".MAIN_DB_PREFIX."overwrite_trans where lang='".$db->escape($this->defaultlang)."'";            
 		    $resql=$db->query($sql);
 		    
 		    if ($resql)
-- 
GitLab