FSN#33658: potentiële SQL-injections aangepast.
svn path=/Website/trunk/; revision=28184
This commit is contained in:
Maykel Geerdink
@@ -93,12 +93,12 @@ function kpn_mandate_list(authparams, params)
|
|||||||
+ " CASE"
|
+ " CASE"
|
||||||
+ " WHEN pk.prs_perslidkostenplaats_boeken = 1 "
|
+ " WHEN pk.prs_perslidkostenplaats_boeken = 1 "
|
||||||
+ " THEN " + safe.quoted_sql(L('lcl_yes'))
|
+ " THEN " + safe.quoted_sql(L('lcl_yes'))
|
||||||
+ " ELSE " + quoted_sql(L('lcl_no'))
|
+ " ELSE " + safe.quoted_sql(L('lcl_no'))
|
||||||
+ " END boeken, "
|
+ " END boeken, "
|
||||||
+ " CASE"
|
+ " CASE"
|
||||||
+ " WHEN pk.prs_perslidkostenplaats_inzage = 1 "
|
+ " WHEN pk.prs_perslidkostenplaats_inzage = 1 "
|
||||||
+ " THEN " + quoted_sql(L('lcl_yes'))
|
+ " THEN " + safe.quoted_sql(L('lcl_yes'))
|
||||||
+ " ELSE " + quoted_sql(L('lcl_no'))
|
+ " ELSE " + safe.quoted_sql(L('lcl_no'))
|
||||||
+ " END inzage, "
|
+ " END inzage, "
|
||||||
+ " k.prs_kostenplaats_key, "
|
+ " k.prs_kostenplaats_key, "
|
||||||
+ " k.prs_perslid_key verantwoordelijke_key, "
|
+ " k.prs_perslid_key verantwoordelijke_key, "
|
||||||
|
|||||||
Reference in New Issue
Block a user