replaced intval() around $web_service_id with $addslashes()

author Greg Gay <info@atutor.ca>

Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)

committer Greg Gay <info@atutor.ca>

Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)
author Greg Gay <info@atutor.ca>
Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)
committer Greg Gay <info@atutor.ca>
Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)
diff --git a/docs/include/classes/DAO/UsersDAO.class.php b/docs/include/classes/DAO/UsersDAO.class.php

index b159ee6..ba3ca3b 100644 (file)
--- a/docs/include/classes/DAO/UsersDAO.class.php
+++ b/docs/include/classes/DAO/UsersDAO.class.php
@@ -314,7 +314,8 @@ class UsersDAO extends DAO {
          */
         public function getUserByWebServiceID($webServiceID)
         {
-           $webServiceID = intval($webServiceID);
+               global $addslashes;
+           $webServiceID = $addslashes($webServiceID);
                 $sql = "SELECT * FROM ".TABLE_PREFIX."users WHERE web_service_id='".$webServiceID."'";
                 if ($rows = $this->execute($sql))
                 {
author	Greg Gay <info@atutor.ca>
	Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)
committer	Greg Gay <info@atutor.ca>
	Fri, 30 Sep 2011 17:44:02 +0000 (17:44 -0000)