fernando/luos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

HOR-4751

Browse Source
This commit is contained in:
Julio Cesar Laura Avendaño
2018-07-20 00:28:45 +00:00
committed by Julio Cesar Laura Avendaño
parent adcbbbed97
commit 3d9380dbd6
2 changed files with 31 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
gulliver/system/class.inputfilter.php
View File

@@ -352,6 +352,7 @@ class InputFilter
* @param String $source * @param String $source
* @param Resource $connection - An open MySQL connection * @param Resource $connection - An open MySQL connection
* @return String $source * @return String $source
* @todo We need to review this method, because the sended string is unescaped
*/ */
public function escapeString($string, &$connection) public function escapeString($string, &$connection)
{ {
@@ -365,6 +366,19 @@ class InputFilter
return $string; return $string;
} }
/*
* Escapes a string using a Propel connection
*
* @param string $string The string to escapes
* @param object $connection The connection object
*
* @return string
*/
public function escapeUsingConnection($string, $connection)
{
return mysql_real_escape_string($string, $connection->getResource());
}
/** /**
* Internal method removes tags/special characters * Internal method removes tags/special characters
* @author Marcelo Cuiza * @author Marcelo Cuiza

17
workflow/engine/classes/Applications.php
View File

@@ -44,6 +44,23 @@ class Applications
//Start the connection to database //Start the connection to database
$con = Propel::getConnection(AppDelegationPeer::DATABASE_NAME); $con = Propel::getConnection(AppDelegationPeer::DATABASE_NAME);
//Sanitize input variables
$inputFilter = new InputFilter();
$userUid = $inputFilter->validateInput($userUid, 'int');
$start = $inputFilter->validateInput($start, 'int');
$limit = $inputFilter->validateInput($limit, 'int');
$search = $inputFilter->escapeUsingConnection($search, $con);
$process = $inputFilter->validateInput($process, 'int');
//$status doesn't require sanitization
$dir = in_array($dir, ['ASC', 'DESC']) ? $dir :'DESC';
$sort = $inputFilter->escapeUsingConnection($sort, $con);
$category = $inputFilter->escapeUsingConnection($category, $con);
$dateFrom = $inputFilter->escapeUsingConnection($dateFrom, $con);
$dateTo = $inputFilter->escapeUsingConnection($dateTo, $con);
$columnSearch = $inputFilter->escapeUsingConnection($columnSearch, $con);
//Start the transaction
$con->begin(); $con->begin();
$stmt = $con->createStatement(); $stmt = $con->createStatement();