From d8895ccdc2c4f21e6c06f70a7177f85af5d8161e Mon Sep 17 00:00:00 2001
From: David Goodwin <david@palepurple.co.uk>
Date: Tue, 10 Jan 2012 15:38:35 +0000
Subject: [PATCH] fix sql injection hole in pacrypt if $CONF[encrypt] ==
 mysql_encrypt (thanks to Filippo Cavallarin)

git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/branches/postfixadmin-2.3@1319 a1433add-5e2c-0410-b055-b7f2511e0802
---
 functions.inc.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/functions.inc.php b/functions.inc.php
index d64ac41f..f36b00b7 100644
--- a/functions.inc.php
+++ b/functions.inc.php
@@ -1189,6 +1189,7 @@ function pacrypt ($pw, $pw_db="")
     // this is apparently useful for pam_mysql etc.
     elseif ($CONF['encrypt'] == 'mysql_encrypt')
     {
+        $pw = escape_string($pw);
         if ($pw_db!="") {
             $salt=substr($pw_db,0,2);
             $res=db_query("SELECT ENCRYPT('".$pw."','".$salt."');");