mirror of
https://github.com/postfixadmin/postfixadmin.git
synced 2024-09-19 19:22:14 +02:00
avoid sql injection
This commit is contained in:
parent
015d4ec9cd
commit
4d6767cc37
@ -433,7 +433,7 @@ class TotpPf
|
||||
*/
|
||||
public function getException(int $id): array
|
||||
{
|
||||
return db_query_one("SELECT * FROM totp_exception_address WHERE id=$id");
|
||||
return db_query_one("SELECT * FROM totp_exception_address WHERE id=:id", ['id' => $id]);
|
||||
}
|
||||
}
|
||||
/* vim: set expandtab softtabstop=4 tabstop=4 shiftwidth=4: */
|
||||
|
Loading…
Reference in New Issue
Block a user