diff options
author | hugetoad <hugetoad@97f52cf1-0a1b-0410-bd0e-c28be96e8082> | 2006-02-08 12:30:46 +0000 |
---|---|---|
committer | hugetoad <hugetoad@97f52cf1-0a1b-0410-bd0e-c28be96e8082> | 2006-02-08 12:30:46 +0000 |
commit | c9ac957849a908ec53b9c410916fb8f690c4c576 (patch) | |
tree | c6ab089a86ef8a19214ba14fc43fb6d84c676fba /frontends/php/index.php | |
parent | babc67a5c091abfb0921b25c3290fafe3d97489f (diff) | |
download | zabbix-c9ac957849a908ec53b9c410916fb8f690c4c576.tar.gz zabbix-c9ac957849a908ec53b9c410916fb8f690c4c576.tar.xz zabbix-c9ac957849a908ec53b9c410916fb8f690c4c576.zip |
zbx_ads() replaced by zabx_dbstr()
git-svn-id: svn://svn.zabbix.com/trunk@2629 97f52cf1-0a1b-0410-bd0e-c28be96e8082
Diffstat (limited to 'frontends/php/index.php')
-rw-r--r-- | frontends/php/index.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/frontends/php/index.php b/frontends/php/index.php index 52d16508..98778ce5 100644 --- a/frontends/php/index.php +++ b/frontends/php/index.php @@ -83,7 +83,7 @@ if(isset($reconnect) && isset($sessionid)) { - $sql="delete from sessions where sessionid='".zbx_ads($sessionid)."'"; + $sql="delete from sessions where sessionid=".zbx_dbstr($sessionid); DBexecute($sql); setcookie("sessionid",$sessionid,time()-3600); unset($sessionid); @@ -92,7 +92,7 @@ if(isset($enter)&&($enter=="Enter")) { $password=md5($password); - $sql="select u.userid,u.alias,u.name,u.surname,u.url,u.refresh from users u where u.alias='".zbx_ads($name)."' and u.passwd='".zbx_ads($password)."'"; + $sql="select u.userid,u.alias,u.name,u.surname,u.url,u.refresh from users u where u.alias=".zbx_dbstr($name)." and u.passwd=".zbx_dbstr($password); $result=DBselect($sql); if(DBnum_rows($result)==1) { @@ -107,7 +107,7 @@ setcookie("sessionid",$sessionid,time()+3600); // Required ! $_COOKIE["sessionid"]=$sessionid; - $sql="insert into sessions (sessionid,userid,lastaccess) values ('".zbx_ads($sessionid)."',".$USER_DETAILS["userid"].",".time().")"; + $sql="insert into sessions (sessionid,userid,lastaccess) values (".zbx_dbstr($sessionid).",".$USER_DETAILS["userid"].",".time().")"; DBexecute($sql); if($USER_DETAILS["url"] != '') |