diff options
author | elij <elij.mx@gmail.com> | 2011-05-12 01:17:12 +0200 |
---|---|---|
committer | Lukas Fleischer <archlinux@cryptocrack.de> | 2011-05-17 10:43:42 +0200 |
commit | 0898f1447a2d6bdc893f55f4718f867734841361 (patch) | |
tree | 22ab9736ad4b92af12daeb3a5215b126c3a8c22c /web/template/tu_list.php | |
parent | d38f3460e55ad4e8486c63902f3b581684d6f188 (diff) | |
download | aur-0898f1447a2d6bdc893f55f4718f867734841361.tar.gz aur-0898f1447a2d6bdc893f55f4718f867734841361.tar.xz |
test return value from db_query before assuming it is valid
make the sql query form consistent in usage by cleaning up instances
where db_query's result was not inspected before attempting to fetch row
data from the handle
Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de>
Diffstat (limited to 'web/template/tu_list.php')
-rw-r--r-- | web/template/tu_list.php | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/web/template/tu_list.php b/web/template/tu_list.php index 3a927d9a..75d9414e 100644 --- a/web/template/tu_list.php +++ b/web/template/tu_list.php @@ -40,7 +40,13 @@ <td class='<?php print $c ?>'> <?php $q = "SELECT * FROM TU_Votes WHERE VoteID = " . $row['ID'] . " AND UserID = " . uid_from_sid($_COOKIE["AURSID"]); - $hasvoted = mysql_num_rows(db_query($q, $dbh)); + $result_tulist = db_query($q, $dbh); + if ($result_tulist) { + $hasvoted = mysql_num_rows($result_tulist); + } + else { + $hasvoted = 0; + } ?> <span class='f5'><span class='blue'> <?php if ($hasvoted == 0) { ?> |