tyler.durden
/
pandorafms
mirror of https://github.com/pandorafms/pandorafms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

safe_input in custom_field operations Dataserver 

Former-commit-id: 7cbb8fdb97a1265201f6dd5600ad58664cc89c29
This commit is contained in:
fbsanchez 2019-01-03 18:00:49 +01:00
parent 3a261f2558
commit cf15f715b6
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
pandora_server/lib/PandoraFMS/DataServer.pm
View File

@ -491,13 +491,13 @@ sub process_xml_data ($$$$$) {
$field_agent->{'id_agent'} = $agent_id;
$field_agent->{'id_field'} = $custom_field_info->{'id_field'};
$field_agent->{'description'} = $cf_value;
$field_agent->{'description'} = safe_input($cf_value);
db_process_insert($dbh, 'id_field', 'tagent_custom_data', $field_agent);
} else {
db_update ($dbh, "UPDATE tagent_custom_data SET description = ? WHERE id_field = ? AND id_agent = ?",
$cf_value ,$custom_field_info->{"id_field"}, $agent->{'id_agente'});
safe_input($cf_value), $custom_field_info->{"id_field"}, $agent->{'id_agente'});
}
}
else {