arno/lychee
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Security fix

Browse Source
This commit is contained in:
Tobias Reich 2014-02-17 22:21:05 +01:00
parent 92f94decd7
commit c86a61ca7b
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
php/modules/misc.php
View File

@ -13,7 +13,9 @@ function openGraphHeader($photoID) {
global $database;
$photoID = mysqli_real_escape_string($database, $photoID);
if (!is_numeric($photoID)) return false;
$result = $database->query("SELECT * FROM lychee_photos WHERE id = '$photoID';");
$row = $result->fetch_object();