[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Noalyss-commit] [noalyss] 03/11: html_page_start : protect query, impro
From: |
Dany De Bontridder |
Subject: |
[Noalyss-commit] [noalyss] 03/11: html_page_start : protect query, improve code |
Date: |
Fri, 1 Jun 2018 17:02:48 -0400 (EDT) |
sparkyx pushed a commit to branch master
in repository noalyss.
commit ff98ba8064efe86315ccc95a56dd71cc9db9140f
Author: Dany De Bontridder <address@hidden>
Date: Sun Apr 22 11:00:00 2018 +0200
html_page_start : protect query, improve code
---
include/lib/ac_common.php | 8 +++++---
1 file changed, 5 insertions(+), 3 deletions(-)
diff --git a/include/lib/ac_common.php b/include/lib/ac_common.php
index 6a910e4..9ace668 100644
--- a/include/lib/ac_common.php
+++ b/include/lib/ac_common.php
@@ -270,9 +270,11 @@ function html_page_start($p_theme="", $p_script="",
$p_script2="")
if ($p_theme != "")
{
$Res = $cn->exec_sql("select the_filestyle from theme
- where the_name='" . $p_theme . "'");
+ where the_name=$1" ,[$p_theme]);
if (Database::num_row($Res) == 0)
- $style = "style-classic.css";
+ {
+ $style = "style-classic7.css";
+ }
else
{
$s = Database::fetch_array($Res, 0);
@@ -281,7 +283,7 @@ function html_page_start($p_theme="", $p_script="",
$p_script2="")
}
else
{
- $style = "style-classic.css";
+ $style = "style-classic7.css";
} // end if
$title="NOALYSS";
- [Noalyss-commit] [noalyss] branch master updated (490aeb1 -> ecc3b53), Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 01/11: Missing class : missing class for acc_ledger, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 05/11: Display the balance difference, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 08/11: Add upgrade128.sql, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 04/11: Action_Code : add validate, cancel and modify icon, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 02/11: Bug 1600 : alphanumeric accounting must be case insensitive, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 03/11: html_page_start : protect query, improve code,
Dany De Bontridder <=
- [Noalyss-commit] [noalyss] 06/11: Bug in QUANT_PURCHASE , dp_dep_priv is not saved, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 07/11: integrate fix for bug in insert_quant_purchase which cannot save private fee Conflicts: include/sql/patch/upgrade128.sql, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 10/11: Security : direct injection, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 09/11: Upgrade 128.sql, Dany De Bontridder, 2018/06/01
- [Noalyss-commit] [noalyss] 11/11: Fix : security fixes see rapport exakat (Damien Seguy), Dany De Bontridder, 2018/06/01