sql injection prevention

author: Star Rauchenberger <fefferburbia@gmail.com> 2024-01-08 20:31:32 +0000
committer: Star Rauchenberger <fefferburbia@gmail.com> 2024-01-08 20:31:32 +0000
commit: 5b892eafafb1f41bab1a20f1524cef144042e3e1 (patch)
tree: 69d3c6eb5439d02a44fefa3af3dac6e13901a7d0 /pages/comic.php
parent: e0eb4e7dd88789432b50260276bfd06242a8ebf6 (diff)
download: pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.tar.gz
pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.tar.bz2
pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/pages/comic.php b/pages/comic.php
index 28a420e..620a038 100755
--- a/pages/comic.php
+++ b/pages/comic.php

@@ -1,6 +1,6 @@
 <?php
-if (isset($_GET['id']))
+if (isset($_GET['id']) && is_numeric($_GET['id']))
 {
        $getcomic = "SELECT * FROM comics WHERE comic_id = " . $_GET['id'] . " AND status = \"publish\"";
 } else {
author	Star Rauchenberger <fefferburbia@gmail.com>	2024-01-08 20:31:32 +0000
committer	Star Rauchenberger <fefferburbia@gmail.com>	2024-01-08 20:31:32 +0000
commit	5b892eafafb1f41bab1a20f1524cef144042e3e1 (patch)
tree	69d3c6eb5439d02a44fefa3af3dac6e13901a7d0 /pages/comic.php
parent	e0eb4e7dd88789432b50260276bfd06242a8ebf6 (diff)
download	pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.tar.gz pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.tar.bz2 pillowcase-5b892eafafb1f41bab1a20f1524cef144042e3e1.zip

diff --git a/pages/comic.php b/pages/comic.php index 28a420e..620a038 100755 --- a/pages/comic.php +++ b/pages/comic.php
@@ -1,6 +1,6 @@
1	<?php	1	<?php
2		2
3	if (isset($_GET['id']))	3	if (isset($_GET['id']) && is_numeric($_GET['id']))
4	{	4	{
5	$getcomic = "SELECT * FROM comics WHERE comic_id = " . $_GET['id'] . " AND status = \"publish\"";	5	$getcomic = "SELECT * FROM comics WHERE comic_id = " . $_GET['id'] . " AND status = \"publish\"";
6	} else {	6	} else {