Fix SQL-injection vulnerability in page identifier parameter

Well that's embarrassing...
ollpu · Jan 21, 2017 · 6891bb2 · 6891bb2
1 parent 422be98
commit 6891bb2
Showing 1 changed file with 4 additions and 1 deletion.
diff --git a/httpdocs/index.php b/httpdocs/index.php
@@ -12,7 +12,10 @@
 
 
 //Go to first page in order (front page) if ?s argument is not set
-if(!isset($_GET["s"]))	{$_GET['s'] = $fprow['uid'];}
+if(!isset($_GET["s"])) {$_GET['s'] = $fprow['uid'];}
+else {
+  $_GET['s'] = mysqli_real_escape_string($yht, $_GET['s']);
+}
 
 
 $haku_s = mysqli_query($yht, "SELECT * FROM `sivut` WHERE uid = '".$_GET['s']."' LIMIT 1");