diff options
| author | Marc Delisle <marc@infomarc.info> | 2013-07-28 14:17:38 +0400 |
|---|---|---|
| committer | Marc Delisle <marc@infomarc.info> | 2013-07-28 14:17:38 +0400 |
| commit | 269d0c89fe0c652389295785ed9a9dc282c7616e (patch) | |
| tree | 4e17ea572dd16a1c6b745f62f55e9abb0ff591e8 /pmd_pdf.php | |
| parent | 6df3c0adb58c632e6cfd092f11199beb8e8311c4 (diff) | |
| parent | 836529be425c5a309549ef440ee4d3bd6b30ca29 (diff) | |
Fix merge conflicts
Diffstat (limited to 'pmd_pdf.php')
| -rw-r--r-- | pmd_pdf.php | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/pmd_pdf.php b/pmd_pdf.php index cde96f1efb..725d44c202 100644 --- a/pmd_pdf.php +++ b/pmd_pdf.php @@ -9,6 +9,13 @@ require_once './libraries/common.inc.php'; require_once 'libraries/pmd_common.php'; /** + * Validate vulnerable POST parameters + */ +if (isset($_POST['scale']) && ! PMA_isValid($_POST['scale'], 'numeric')) { + die('Attack stopped'); +} + +/** * Sets globals from $_POST */ $post_params = array( |