ChangeSet ID: 26126 CVSROOT: /opt/cvs-commit Module name: appdb Changes by: wineowner@winehq.org 2006/06/29 11:09:29

Modified files: include : filter.php

Log message: Jonathan Ernst jonathan@ernstfamily.ch Check for arrays when filtering. MAX_FILE_SIZE should not be filtered

Patch: http://cvs.winehq.org/patch.py?id=26126

Old revision New revision Changes Path 1.1 1.2 +5 -1 appdb/include/filter.php

Index: appdb/include/filter.php diff -u -p appdb/include/filter.php:1.1 appdb/include/filter.php:1.2 --- appdb/include/filter.php:1.1 29 Jun 2006 16: 9:29 -0000 +++ appdb/include/filter.php 29 Jun 2006 16: 9:29 -0000 @@ -37,8 +37,12 @@ function filter_gpc() break; } break; + case "a": // array + if(!is_array($_REQUEST[$aKeys[$i]])) + util_show_error_page("Fatal error: ".$aKeys[$i]." should be an array."); + break; default: - if($aKeys[$i]!="whq_appdb") // that's the name of the session cookie + if($aKeys[$i]!="whq_appdb" && $aKeys[$i]!="MAX_FILE_SIZE") // whq_appdb is the name of the session cookie util_show_error_page("Fatal error: type of variable ".$aKeys[$i]." is not recognized."); break; }