Context Navigation

Changeset 20762

Timestamp:

Feb 15, 2013, 2:04:39 PM (11 years ago)

Author:

nikrou

Message:

Fix issue that altering picture page content
Fix possible sql injections issues

Location:

extensions/user_tags

Files:

-                      r20252
+                      r20762
+User Tags 0.7.3 - 2013-02-15
+================================
+* Fix issue that altering picture page content
+* Fix possible sql injections issues
 User Tags 0.7.2 - 2013-01-18
 ================================

r20251	r20762
62	62
63	63	$template->assign('U_HELP', get_root_url().'admin/popuphelp.php?page=readme');
64		?>

r20251	r20762
27	27	define('T4U_JS', PHPWG_PLUGINS_PATH . basename(T4U_PLUGIN_ROOT). '/js');
28	28	define('T4U_WS', 'user_tags.tags.');
29		?>

r20251	r20762
22	22	$default_values = array();
23	23	$default_values['t4u_permission_update'] = null;
24		?>

r20252	r20762
89	89	and is_autorize_status(get_access_type_status($this->getPermission($permission))));
90	90	}
91
	91
92	92	public static function plugin_admin_menu($menu) {
93	93	$menu[] = array('NAME' => T4U_PLUGIN_NAME,
94	94	'URL' => get_admin_plugin_menu_link(T4U_PLUGIN_ROOT .'/admin.php')
95	95	);
96
	96
97	97	return $menu;
98	98	}
…	…
122	122	}
123	123	}
124		?>

r20251	r20762
47	47	$related_tags = array();
48	48	if (!empty($template->smarty->_tpl_vars['related_tags'])) {
49		foreach ($template->smarty->_tpl_vars['related_tags'] as $id => $tag_infos) {
50		$related_tags['~~'.$tag_infos['id'].'~~'] = $tag_infos['name'];
51		}
52		$template->assign('T4U_RELATED_TAGS', $related_tags);
	49	foreach ($template->smarty->_tpl_vars['related_tags'] as $id => $tag_infos) {
	50	$related_tags['~~'.$tag_infos['id'].'~~'] = $tag_infos['name'];
	51	}
	52	$template->assign('T4U_RELATED_TAGS', $related_tags);
53	53	}
54	54
…	…
56	56	$template->assign_var_from_handle('PLUGIN_PICTURE_AFTER', 'add_tags');
57	57	}
	58
	59	return $content;
58	60	}
59	61
…	…
65	67	}
66	68	}
67		?>

-                      r20252
+                      r20762
     $query = 'SELECT id AS tag_id, name AS tag_name FROM '.TAGS_TABLE;
     if (!empty($params['q'])) {
       $query .= sprintf(' WHERE name like \'%%%s%%\'', $params['q']);
+      $query .= sprintf(' WHERE name like \'%%%s%%\'', pwg_db_real_escape_string($params['q']));
+    }
 …
     $message = '';
+    $query = '
+SELECT
+    tag_id,
+    name AS tag_name
+  FROM '.IMAGE_TAG_TABLE.' AS it
+    JOIN '.TAGS_TABLE.' AS t ON t.id = it.tag_id
+  WHERE image_id = '.(int) $params['image_id'].'
+;';
+    $query = 'SELECT tag_id, name AS tag_name';
+    $query .= ' FROM '.IMAGE_TAG_TABLE.' AS it';
+    $query .= ' JOIN '.TAGS_TABLE.' AS t ON t.id = it.tag_id';
+    $query .= sprintf(' WHERE image_id = %s', pwg_db_real_escape_string($params['image_id']));
     $current_tags = $this->__makeTagsList($query);
 …
       if (empty($tags_to_associate)) { // remove all tags for an image
         $query = 'DELETE FROM '.IMAGE_TAG_TABLE;
         $query .= sprintf(' WHERE image_id = %d', $params['image_id']);
+        $query .= sprintf(' WHERE image_id = %d', pwg_db_real_escape_string($params['image_id']));
         pwg_query($query);
       } else {

r20252	r20762
46	46
47	47	set_plugin_data($plugin['id'], $plugin_config);
48		?>

-                      r20252
+                      r20762
 /*
 Plugin Name: User Tags
 Version: 0.7.2
+Version: 0.7.3
 Description: Allow visitors to add tag to images
 Plugin URI: http://piwigo.org/ext/extension_view.php?eid=441
 …
 include_once(dirname(__FILE__).'/init.php');
-?>

Note: See TracChangeset for help on using the changeset viewer.