mirror/postfixadmin
0
0
Fork 0
mirror of https://github.com/postfixadmin/postfixadmin.git synced 2024-09-19 19:22:14 +02:00
Code

avoid sql injection

Browse Source
This commit is contained in:
David Goodwin 2023-12-23 21:47:57 +00:00
parent 015d4ec9cd
commit 4d6767cc37
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
model/TotpPf.php
View File

@ -433,7 +433,7 @@ class TotpPf
*/
public function getException(int $id): array
{
return db_query_one("SELECT * FROM totp_exception_address WHERE id=$id");
return db_query_one("SELECT * FROM totp_exception_address WHERE id=:id", ['id' => $id]);
}
}
/* vim: set expandtab softtabstop=4 tabstop=4 shiftwidth=4: */