chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

[svn r12462] Filter $_GET['course'], fixing security flaw number 1 in http://www.frsirt.com/bulletins/10497

Browse Source
skala
Yannick Warnier 19 years ago
parent fc51bd3740
commit 62a2db9970
1 changed files with 3 additions and 2 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 5
      main/auth/my_progress.php

5
main/auth/my_progress.php
Unescape View File

@ -162,19 +162,20 @@ foreach($Courses as $enreg)
*/
if(isset($_GET['course']))
{
$course = Database::escape_string($_GET['course']);
if($_GET['id_session']!=0){
$sqlInfosCourse = " SELECT course.code,course.title,course.db_name,CONCAT(user.firstname,' ',user.lastname,' / ',user.email) as tutor_infos
FROM $tbl_user as user,$tbl_course as course
INNER JOIN $tbl_session_course as sessionCourse
ON sessionCourse.course_code = course.code
WHERE sessionCourse.id_coach = user.user_id
AND course.code= '".$_GET['course']."'
AND course.code= '".$course."'
";
}
else{
$sqlInfosCourse = " SELECT course.code,course.title,course.db_name
FROM $tbl_course as course
WHERE course.code= '".$_GET['course']."'
WHERE course.code= '".$course."'
";
}

Write Preview
Loading…
Cancel
Save