diff options
| author | terry%mozilla.org <> | 2000-03-08 03:22:41 +0100 |
|---|---|---|
| committer | terry%mozilla.org <> | 2000-03-08 03:22:41 +0100 |
| commit | d38fe0e5cab4a7efaba8a79a22a85b0e67817441 (patch) | |
| tree | d090c36e14e128eb6c65e3b4d5d576ba78647650 /CGI.pl | |
| parent | 77f66018f328fe5321fa95d76515a187231ad1f0 (diff) | |
| download | bugzilla-d38fe0e5cab4a7efaba8a79a22a85b0e67817441.tar.gz bugzilla-d38fe0e5cab4a7efaba8a79a22a85b0e67817441.tar.xz | |
Patch by Brian Duggan <bduggan@oven.com> -- security improvements.
Diffstat (limited to 'CGI.pl')
| -rw-r--r-- | CGI.pl | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -842,6 +842,9 @@ sub CheckIfVotedConfirmed { sub DumpBugActivity { my ($id, $starttime) = (@_); my $datepart = ""; + + die "Invalid id: $id" unless $id=~/^\s*\d+\s*$/; + if (defined $starttime) { $datepart = "and bugs_activity.bug_when >= $starttime"; } |