tyler.durden
/
pandorafms
mirror of https://github.com/pandorafms/pandorafms.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'ent-5376-Inyecciones-SQL-vistas-por-Nokia-USA' into 'develop' 

Fixed % with sprintf

See merge request artica/pandorafms!3039
This commit is contained in:
Daniel Rodriguez 2020-02-04 13:14:55 +01:00
parent 8b60daa9ba 891c517611
commit e6a5d7986f
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pandora_console/include/class/Tree.class.php
View File

@ -123,7 +123,7 @@ class Tree
return '';
}
return " AND tam.nombre LIKE '%%".$this->filter['searchModule']."%%' ";
return " AND tam.nombre LIKE '%%".str_replace('%', '%%', $this->filter['searchModule'])."%%' ";
}
@ -133,7 +133,7 @@ class Tree
return '';
}
return " AND LOWER(ta.alias) LIKE LOWER('%%".$this->filter['searchAgent']."%%')";
return " AND LOWER(ta.alias) LIKE LOWER('%%".str_replace('%', '%%', $this->filter['searchAgent'])."%%')";
}
@ -331,7 +331,7 @@ class Tree
return '';
}
return " AND tg.nombre LIKE '%%".$this->filter['searchGroup']."%%'";
return " AND tg.nombre LIKE '%%".str_replace('%', '%%', $this->filter['searchGroup'])."%%'";
}