GIT.Harvie.CZ / mirrors / Kyberia-bloodline.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
psql db schema test
[mirrors/Kyberia-bloodline.git] / wwwroot / inc / eventz / K.inc
diff --git a/wwwroot/inc/eventz/K.inc b/wwwroot/inc/eventz/K.inc
index 05485e4d498f7497f5dc2c5cf5b6e00ca5b4cbea..8a5aca46578437734adf0b89698db39e26973dbc 100644 (file)
--- a/wwwroot/inc/eventz/K.inc
+++ b/wwwroot/inc/eventz/K.inc
@@ -56,6 +56,7 @@ function K() {
     $kset->next();
     $user_k=$kset->getString('user_k');
 
+    // XXX hard coded
     $senat_id = 876611;
     $K_id     = 1961061;
     $comms    = getCommanders($K_id);
@@ -70,6 +71,11 @@ function K() {
 
     foreach ($k as $id) {
 
+       // prevent sqli
+       $k = intval($k);
+       if ($k == 0) {  continue; }
+       
+       
         if ($user_k) {
             $isSenat = hasAncestor(getAncestors($id), $senat_id);
             if ($isSenat && !($isComm || $isSOwner)){
https://github.com/Kyberia/Kyberia-bloodline.git (mirrored @ Thu, 27 Jun 2024 09:50:08 +0200)
This page took 0.091231 seconds and 4 git commands to generate.