[Devel] r272 - trunk

Sam 5 Mai 13:11:52 CEST 2007

Author: thomas
Date: Sat May  5 13:11:51 2007
New Revision: 272

Log:
Validation du paramètre tag.



Modified:
   trunk/textlist.php

Modified: trunk/textlist.php
==============================================================================

--- trunk/textlist.php	(original)
+++ trunk/textlist.php	Sat May  5 13:11:51 2007
@@ -7,6 +7,13 @@
 
 $db = new db();
 
+if (! $_GET['tag'] || !ereg("^[a-z0-9\-]*$", $_GET['tag']))
+{
+  echo "<p><b>Aucun tag sélectionné, ou tag invalide.</b></p>";
+  put_footer();
+  exit;
+}
+
 echo "===============================================================\n";
 $events = $db->query ("select * from events where tags like '%" . $_GET['tag'] . "%' order by start_time");
 while ($event = mysql_fetch_object($events))
