Rooba
/
boinc
mirror of https://github.com/BOINC/boinc.git
1
0
Fork 0
Code Issues 1 Packages Projects Releases Wiki Activity

web: fix SQL injection vulnerability

This commit is contained in:
David Anderson 2014-11-20 11:04:22 -08:00
parent b80ea2aa04
commit 21b7b898fa
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
html/inc/boinc_db.inc
View File

@ -311,6 +311,7 @@ class BoincResult {
}
static function lookup_name($name) {
$db = BoincDb::get();
$name = BoincDb::escape_string($name);
return $db->lookup('result', 'BoincResult', "name='$name'");
}
function delete() {