Skip to content
Snippets Groups Projects
Commit d7b142be authored by Laurent Destailleur's avatar Laurent Destailleur Committed by GitHub
Browse files

Merge pull request #6830 from jfefe/patch-12 

Fix #6504: CVE-2017-7886
parents 61a4382b d410a320
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
htdocs/core/class/translate.class.php
+ 1
1
View file @ d7b142be
...@@ -439,7 +439,7 @@ class Translate ...@@ -439,7 +439,7 @@ class Translate
if (! $found) if (! $found)
{ {
// Overwrite translation with database read // Overwrite translation with database read
$sql="SELECT transkey, transvalue FROM ".MAIN_DB_PREFIX."overwrite_trans where lang='".$this->defaultlang."'"; $sql="SELECT transkey, transvalue FROM ".MAIN_DB_PREFIX."overwrite_trans where lang='".$db->escape($this->defaultlang)."'";
$resql=$db->query($sql); $resql=$db->query($sql);
if ($resql) if ($resql)
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment