From c4f17758b53527599013ccec6043c4840ed17477 Mon Sep 17 00:00:00 2001
From: Greg Gay <info@atutor.ca>
Date: Fri, 30 Sep 2011 17:44:02 +0000
Subject: [PATCH] replaced intval() around $web_service_id with $addslashes()

---
 docs/include/classes/DAO/UsersDAO.class.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/include/classes/DAO/UsersDAO.class.php b/docs/include/classes/DAO/UsersDAO.class.php
index b159ee6..ba3ca3b 100644
--- a/docs/include/classes/DAO/UsersDAO.class.php
+++ b/docs/include/classes/DAO/UsersDAO.class.php
@@ -314,7 +314,8 @@ class UsersDAO extends DAO {
 	 */
 	public function getUserByWebServiceID($webServiceID)
 	{
-	    $webServiceID = intval($webServiceID);
+		global $addslashes;
+	    $webServiceID = $addslashes($webServiceID);
 		$sql = "SELECT * FROM ".TABLE_PREFIX."users WHERE web_service_id='".$webServiceID."'";
 		if ($rows = $this->execute($sql))
 		{
-- 
2.17.1