Skip to content

Commit

Permalink
bug 2971: i.php should escape source location
Browse files Browse the repository at this point in the history 
git-svn-id: http://piwigo.org/svn/trunk@28198 68402e56-0260-453c-a942-63ccdbb3a9ee
  • Loading branch information
rvelices committed Apr 16, 2014
1 parent ac316ce commit d1ac644
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion i.php
View file
Expand Up @@ -468,7 +468,7 @@ function send_derivative($expires)
$query = '
SELECT *
FROM '.$prefixeTable.'images
WHERE path=\''.$page['src_location'].'\'
WHERE path=\''.addslashes($page['src_location']).'\'
;';

if ( ($row=pwg_db_fetch_assoc(pwg_query($query))) )
Expand Down

0 comments on commit d1ac644

Please sign in to comment.