Mikescher/www.mikescher.com
1
0
Fork 0
Code Actions Activity

Fixed mysql_real_escape_char errors

Browse Source
This commit is contained in:
Mike Schwörer
2014-08-04 16:37:13 +02:00
parent 57b12e9916
commit f8df6da103
3 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
www/protected/controllers/HighscoresController.php
View File

@@ -75,7 +75,7 @@ class HighscoresController extends MSController //TODO-MS Test online if it all
}
else
{
$this->actionListEntries(intval(mysql_real_escape_string($_GET["gameid"])));
$this->actionListEntries(intval(htmlspecialchars($_GET["gameid"])));
return;
}
}
@@ -91,7 +91,7 @@ class HighscoresController extends MSController //TODO-MS Test online if it all
}
else
{
$start = intval(mysql_real_escape_string($_GET["start"])) - 1;
$start = intval(htmlspecialchars($_GET["start"])) - 1;
if ($start < 0)
{
$start = 0;
@@ -100,7 +100,7 @@ class HighscoresController extends MSController //TODO-MS Test online if it all
if (isset($_GET["highlight"]))
{
$highlight= intval(mysql_real_escape_string($_GET["highlight"]));
$highlight= intval(htmlspecialchars($_GET["highlight"]));
}
else
$highlight = 0;