[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-cvs] calendar/inc/class.socalendar_sql.inc.php, 1.28.2.4.2
From: |
nomail |
Subject: |
[Phpgroupware-cvs] calendar/inc/class.socalendar_sql.inc.php, 1.28.2.4.2.9 |
Date: |
Sun, 16 May 2004 13:06:14 +0200 |
Update of /calendar/inc
Modified Files:
Branch: Version-0_9_16-branch
class.socalendar_sql.inc.php
date: 2004/05/16 11:06:14; author: skwashd; state: Exp; lines: +4 -7
Log Message:
fix for bug #8975 and some security
=====================================================================
Index: calendar/inc/class.socalendar_sql.inc.php
diff -u calendar/inc/class.socalendar_sql.inc.php:1.28.2.4.2.8
calendar/inc/class.socalendar_sql.inc.php:1.28.2.4.2.9
--- calendar/inc/class.socalendar_sql.inc.php:1.28.2.4.2.8 Fri Sep 12
02:16:22 2003
+++ calendar/inc/class.socalendar_sql.inc.php Sun May 16 11:06:14 2004
@@ -824,20 +824,17 @@
{
return False;
}
- $lastmod = intval($lastmod);
$repeats = (bool) $repeats;
- $user_where = " AND phpgw_cal_user.cal_login = $this->user";
+ $user_where = ' AND phpgw_cal_user.cal_login = ' .
intval($this->user);
$member_groups =
$GLOBALS['phpgw']->accounts->membership($this->user);
@reset($member_groups);
while($member_groups != False && list($key,$group_info) =
each($member_groups))
{
- $member[] = $group_info['account_id'];
+ $member[] = intval($group_info['account_id']);
}
@reset($member);
-// $user_where .= ','.implode(',',$member);
- //$user_where .= ')) ';
if($this->debug)
{
@@ -846,7 +843,7 @@
if($lastmod > 0)
{
- $wheremod = "AND mdatetime = $lastmod";
+ $wheremod = ' AND mdatetime > ' . intval($lastmod);
}
$order_by = ' ORDER BY phpgw_cal.cal_id ASC';
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Phpgroupware-cvs] calendar/inc/class.socalendar_sql.inc.php, 1.28.2.4.2.9,
nomail <=