security check

author: tcitworld <tcit@tcit.fr> 2014-06-30 22:15:55 +0200
committer: tcitworld <tcit@tcit.fr> 2014-06-30 22:15:55 +0200
commit: a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c (patch)
tree: 237adc8bfab4c63569947390646f95f4db1cab5b /index.php
parent: cdda041a90657ea5bf87d04339ef88746caa0733 (diff)
download: wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.tar.gz
wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.tar.zst
wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.zip
1 files changed, 3 insertions, 3 deletions
diff --git a/index.php b/index.php
index c134b103..afacdddc 100755
--- a/index.php
+++ b/index.php
@@ -13,8 +13,8 @@ require 'check_setup.php';
 require_once 'inc/poche/global.inc.php';
 # Set error reporting level
-if (defined('ERROR_REPORTING')) {
+if (defined('ERROR_REPORTING')) {
-        error_reporting(ERROR_REPORTING);
+        error_reporting(ERROR_REPORTING);
 }
 # Start session
@@ -98,7 +98,7 @@ if (isset($_GET['login'])) {
    }
    else {
        $tag_id = (isset($_GET['tag_id']) ? intval($_GET['tag_id']) : 0);
-        $poche->generateFeeds($_GET['token'], $_GET['user_id'], $tag_id, $_GET['type']);
+        $poche->generateFeeds($_GET['token'], filter_var($_GET['user_id'],FILTER_SANITIZE_NUMBER_INT), $tag_id, $_GET['type']);
    }
 }
author	tcitworld <tcit@tcit.fr>	2014-06-30 22:15:55 +0200
committer	tcitworld <tcit@tcit.fr>	2014-06-30 22:15:55 +0200
commit	a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c (patch)
tree	237adc8bfab4c63569947390646f95f4db1cab5b /index.php
parent	cdda041a90657ea5bf87d04339ef88746caa0733 (diff)
download	wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.tar.gz wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.tar.zst wallabag-a13ff95777bfca0b677ec17faa5aa4ffafc9ad1c.zip

diff --git a/index.php b/index.php index c134b103..afacdddc 100755 --- a/index.php +++ b/index.php
@@ -13,8 +13,8 @@ require 'check_setup.php';
13	require_once 'inc/poche/global.inc.php';	13	require_once 'inc/poche/global.inc.php';
14		14
15	# Set error reporting level	15	# Set error reporting level
16	if (defined('ERROR_REPORTING')) {	16	if (defined('ERROR_REPORTING')) {
17	error_reporting(ERROR_REPORTING);	17	error_reporting(ERROR_REPORTING);
18	}	18	}
19		19
20	# Start session	20	# Start session
@@ -98,7 +98,7 @@ if (isset($_GET['login'])) {
98	}	98	}
99	else {	99	else {
100	$tag_id = (isset($_GET['tag_id']) ? intval($_GET['tag_id']) : 0);	100	$tag_id = (isset($_GET['tag_id']) ? intval($_GET['tag_id']) : 0);
101	$poche->generateFeeds($_GET['token'], $_GET['user_id'], $tag_id, $_GET['type']);	101	$poche->generateFeeds($_GET['token'], filter_var($_GET['user_id'],FILTER_SANITIZE_NUMBER_INT), $tag_id, $_GET['type']);
102	}	102	}
103	}	103	}
104		104