From: tcitworld <tcit@tcit.fr>
Date: Mon, 30 Jun 2014 20:15:55 +0000 (+0200)
Subject: security check
X-Git-Tag: 1.7.1^2~9
X-Git-Url: https://git.immae.eu/?a=commitdiff_plain;h=a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c;p=github%2Fwallabag%2Fwallabag.git

security check
---

diff --git a/index.php b/index.php
index c134b103..afacdddc 100755
--- a/index.php
+++ b/index.php
@@ -13,8 +13,8 @@ require 'check_setup.php';
 require_once 'inc/poche/global.inc.php';
 
 # Set error reporting level
-if (defined('ERROR_REPORTING')) {
-	error_reporting(ERROR_REPORTING);
+if (defined('ERROR_REPORTING')) {
+	error_reporting(ERROR_REPORTING);
 }
 
 # Start session
@@ -98,7 +98,7 @@ if (isset($_GET['login'])) {
     }
     else {
         $tag_id = (isset($_GET['tag_id']) ? intval($_GET['tag_id']) : 0);
-        $poche->generateFeeds($_GET['token'], $_GET['user_id'], $tag_id, $_GET['type']);
+        $poche->generateFeeds($_GET['token'], filter_var($_GET['user_id'],FILTER_SANITIZE_NUMBER_INT), $tag_id, $_GET['type']);
     }
 }