• Joshua Wise's avatar
    Potential SQL injection in Local_group::setNickname() · 783e400d
    Joshua Wise authored
    This change escapes a parameter in Local_group::setNickname(). Review
    of the code paths that call this function sanitize the parameter
    higher up the stack, but it's escaped here to prevent mistakes later.
    
    Note that nickname parameters are normally alphanum strings, so
    there's not much danger in double-escaping them.
    783e400d
Name
Last commit
Last update
actions Loading commit data...
avatar Loading commit data...
background Loading commit data...
classes Loading commit data...
db Loading commit data...
doc-src Loading commit data...
extlib Loading commit data...
file Loading commit data...
js Loading commit data...
lib Loading commit data...
local Loading commit data...
locale Loading commit data...
mail-src Loading commit data...
plugins Loading commit data...
scripts Loading commit data...
tests Loading commit data...
theme Loading commit data...
.gitignore Loading commit data...
CONFIGURE Loading commit data...
COPYING Loading commit data...
EVENTS.txt Loading commit data...
INSTALL Loading commit data...
Makefile Loading commit data...
PLUGINS.txt Loading commit data...
README Loading commit data...
UPGRADE Loading commit data...
apple-touch-icon.png Loading commit data...
favicon.ico Loading commit data...
htaccess.sample Loading commit data...
index.php Loading commit data...
install.php Loading commit data...
lighttpd.conf.example Loading commit data...