Merge pull request #122 from equinoxmatt/master

nabeelio · nabeelio · commit 89e65bbabdbe · 2014-01-12T06:37:41.000-08:00
SQL Injection fix
diff --git a/core/common/Auth.class.php b/core/common/Auth.class.php
@@ -255,8 +255,8 @@ public static function ProcessLogin($useridoremail, $password)
 			{
 				$emailaddress = DB::escape($useridoremail);
 				$sql = 'SELECT * FROM ' . TABLE_PREFIX . 'pilots
-						WHERE email=\''.$useridoremail.'\'';
-			} 
+						WHERE email=\''.$emailaddress.'\'';
+			}
 			# They're loggin in with a pilot id
 			elseif(preg_match('/^([A-Za-z]*)(.*)(\d*)/', $useridoremail, $matches)>0)
 			{
@@ -273,7 +273,7 @@ public static function ProcessLogin($useridoremail, $password)
 				return false;
 			}
 		}
-		
+
 		$password = DB::escape($password);
 		$userinfo = DB::get_row($sql);
 
diff --git a/core/common/PilotData.class.php b/core/common/PilotData.class.php
@@ -951,7 +951,7 @@ public static function getPilotGroups($pilotid)
 	 * @param int The pilot ID for which to generate a signature for
 	 * @return bool Success
 	 */
-	public function generateSignature($pilotid)
+	public static function generateSignature($pilotid)
 	{
 		$pilot = self::getPilotData($pilotid);
 		$pilotcode = self::getPilotCode($pilot->code, $pilot->pilotid);

Original file line number	Diff line number	Diff line change
`@@ -255,8 +255,8 @@ public static function ProcessLogin($useridoremail, $password)`
`255`	`255`	`{`
`256`	`256`	`$emailaddress = DB::escape($useridoremail);`
`257`	`257`	`$sql = 'SELECT * FROM ' . TABLE_PREFIX . 'pilots`
`258`		`- WHERE email=\''.$useridoremail.'\'';`
`259`		`- }`
	`258`	`+ WHERE email=\''.$emailaddress.'\'';`
	`259`	`+ }`
`260`	`260`	`# They're loggin in with a pilot id`
`261`	`261`	`elseif(preg_match('/^([A-Za-z])(.)(\d*)/', $useridoremail, $matches)>0)`
`262`	`262`	`{`
`@@ -273,7 +273,7 @@ public static function ProcessLogin($useridoremail, $password)`
`273`	`273`	`return false;`
`274`	`274`	`}`
`275`	`275`	`}`
`276`		`-`
	`276`	`+`
`277`	`277`	`$password = DB::escape($password);`
`278`	`278`	`$userinfo = DB::get_row($sql);`
`279`	`279`
Original file line number	Diff line number	Diff line change
`@@ -951,7 +951,7 @@ public static function getPilotGroups($pilotid)`
`951`	`951`	`* @param int The pilot ID for which to generate a signature for`
`952`	`952`	`* @return bool Success`
`953`	`953`	`*/`
`954`		`- public function generateSignature($pilotid)`
	`954`	`+ public static function generateSignature($pilotid)`
`955`	`955`	`{`
`956`	`956`	`$pilot = self::getPilotData($pilotid);`
`957`	`957`	`$pilotcode = self::getPilotCode($pilot->code, $pilot->pilotid);`