banananetwork
/
postfixadmin
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

AliasHandler.php:

Browse Source 
- escape $address in is_mailbox_alias()


git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@956 a1433add-5e2c-0410-b055-b7f2511e0802
pull/2/head
Christian Boltz 14 years ago
parent e8beac17d0
commit cebf126eff
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File

3
model/AliasHandler.php
Unescape Escape View File

@ -69,7 +69,8 @@ class AliasHandler {
}
$table_mailbox = table_by_key('mailbox');
$sql = "SELECT * FROM $table_mailbox WHERE username='$address'";
$E_address = escape_string($address);
$sql = "SELECT * FROM $table_mailbox WHERE username='$E_address'";
$result = db_query($sql);
if($result['rows'] != 1) {
return false;

Write Preview
Loading…
Cancel
Save