From 9084528b2a0ca002fbd26663960e2a6006d40553 Mon Sep 17 00:00:00 2001
From: David Sommerseth <dazo@users.sourceforge.net>
Date: Sun, 27 Sep 2009 15:36:49 +0200
Subject: Fixed missing check in eDBadminValidateSession() against interface
 type

---
 database/sqlite/administration.c | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'database/sqlite')

diff --git a/database/sqlite/administration.c b/database/sqlite/administration.c
index 04dbe6e..59180a9 100644
--- a/database/sqlite/administration.c
+++ b/database/sqlite/administration.c
@@ -251,8 +251,9 @@ int eDBadminValidateSession(eurephiaCTX *ctx, const char *sesskey, const char *r
                            "  LEFT JOIN eurephia_adminaccess USING(uid,interface)"
                            " WHERE status IN (1,2)"
                            "       AND sessionkey = '%q'"
-                           "       AND access = '%q'",
-                           expire_time, sesskey, req_access);
+                           "       AND access = '%q'"
+                           "       AND interface = '%c'",
+                           expire_time, sesskey, req_access, interface);
 
         if( (res == NULL) ) {
                 eurephia_log(ctx, LOG_FATAL, 0, "Could not validate session");
-- 
cgit