poweradmin: comparison inc/users.inc.php

equal deleted inserted replaced

-:963d62dc1c80
+:3d18290ac993
 	}
 // Set current user ID.
 $userid=$_SESSION['userid'];
-		$query = 'SELECT id FROM perm_items WHERE name='.$db->quote('user_is_ueberuser');
+		$query = 'SELECT id FROM perm_items WHERE name='.$db->quote('user_is_ueberuser', 'text');
 		$ueberUserId = $db->queryOne($query);
 // Find the template ID that this user has been assigned.
 $query = "SELECT perm_templ
 			FROM users
-			WHERE id = " . $db->quote($userid) ;
+			WHERE id = " . $db->quote($userid, 'integer') ;
 $templ_id = $db->queryOne($query);
 // Does this user have ueberuser rights?
 $query = "SELECT id
 			FROM perm_templ_items
-			WHERE templ_id = " . $db->quote($templ_id) . "
+			WHERE templ_id = " . $db->quote($templ_id, 'integer') . "
 			AND perm_id = ".$ueberUserId;
 $response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 if ( $response->numRows() > 0 ) {
 return 1;
 }
 // Find the permission ID for the requested permission.
 $query = "SELECT id
 			FROM perm_items
-			WHERE name = " . $db->quote($permission) ;
+			WHERE name = " . $db->quote($permission, 'text') ;
 $perm_id = $db->queryOne($query);
 // Check if the permission ID is assigned to the template ID.
 $query = "SELECT id
 			FROM perm_templ_items
-			WHERE templ_id = " . $db->quote($templ_id) . "
+			WHERE templ_id = " . $db->quote($templ_id, 'integer') . "
-			AND perm_id = " . $db->quote($perm_id) ;
+			AND perm_id = " . $db->quote($perm_id, 'integer') ;
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 $response = $db->query($query);
 if ( $response->numRows() > 0 ) {
 return 1;
 } else {
 {
 	global $db;
 	$add = '';
 	if(is_numeric($id)) {
 //When a user id is given, it is excluded from the userlist returned.
-$add = " WHERE users.id!=".$db->quote($id);
+$add = " WHERE users.id!=".$db->quote($id, 'integer');
 	}
 	// Make a huge query.
 	$query = "SELECT users.id AS id,
 		users.username AS username,
 */
 function is_valid_user($id)
 {
 	global $db;
 	if(is_numeric($id)) {
-		$response = $db->query("SELECT id FROM users WHERE id=".$db->quote($id));
+		$response = $db->query("SELECT id FROM users WHERE id=".$db->quote($id, 'integer'));
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		if ($response->numRows() == 1) {
 			return true;
 		} else {
 			return false;
 * return values: true if exists, false if not.
 */
 function user_exists($user)
 {
 	global $db;
-	$response = $db->query("SELECT id FROM users WHERE username=".$db->quote($user));
+	$response = $db->query("SELECT id FROM users WHERE username=".$db->quote($user, 'text'));
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	if ($response->numRows() == 0) {
 return false;
 	} elseif ($response->numRows() == 1) {
 	return true;
 					add_owner_to_zone($zone['zid'], $zone['newowner']);
 				}
 			}
 		}
-		$query = "DELETE FROM zones WHERE owner = " . $db->quote($uid) ;
+		$query = "DELETE FROM zones WHERE owner = " . $db->quote($uid, 'integer') ;
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
-		$query = "DELETE FROM users WHERE id = " . $db->quote($uid) ;
+		$query = "DELETE FROM users WHERE id = " . $db->quote($uid, 'integer') ;
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	}
 	return true;
 }
 		// First find the current username of the user ID we want to change. If the
 		// current username is not the same as the username that was given by the
 		// user, the username should apparantly changed. If so, check if the "new"
 		// username already exists.
-		$query = "SELECT username FROM users WHERE id = " . $db->quote($id);
+		$query = "SELECT username FROM users WHERE id = " . $db->quote($id, 'integer');
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		$usercheck = array();
 		$usercheck = $response->fetchRow();
 			// Username of user ID in the database is different from the name
 			// we have been given. User wants a change of username. Now, make
 			// sure it doesn't already exist.
-			$query = "SELECT id FROM users WHERE username = " . $db->quote($user);
+			$query = "SELECT id FROM users WHERE username = " . $db->quote($user, 'integer');
 			$response = $db->query($query);
 			if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 			if($response->numRows() > 0) {
 				error(ERR_USER_EXIST);
 		// So, user doesn't want to change username or, if he wants, there is not
 		// another user that goes by the wanted username. So, go ahead!
 		$query = "UPDATE users SET
-				username = " . $db->quote($user) . ",
+				username = " . $db->quote($user, 'text') . ",
-				fullname = " . $db->quote($fullname) . ",
+				fullname = " . $db->quote($fullname, 'text') . ",
-				email = " . $db->quote($email) . ",
+				email = " . $db->quote($email, 'text') . ",
-				perm_templ = " . $db->quote($perm_templ) . ",
+				perm_templ = " . $db->quote($perm_templ, 'integer') . ",
-				description = " . $db->quote($description) . ",
+				description = " . $db->quote($description, 'text') . ",
-				active = " . $db->quote($active) ;
+				active = " . $db->quote($active, 'integer') ;
 		if($password != "") {
-			$query .= ", password = " . $db->quote(md5($password)) ;
+			$query .= ", password = " . $db->quote(md5($password), 'text') ;
 		}
-		$query .= " WHERE id = " . $db->quote($id) ;
+		$query .= " WHERE id = " . $db->quote($id, 'integer') ;
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	} else {
 	if ($details['newpass'] != $details['newpass2']) {
 		error(ERR_USER_MATCH_NEW_PASS);
 		return false;
 	}
-	$query = "SELECT id, password FROM users WHERE username = " . $db->quote($_SESSION["userlogin"]);
+	$query = "SELECT id, password FROM users WHERE username = " . $db->quote($_SESSION["userlogin"], 'text');
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	$rinfo = $response->fetchRow();
 	if(md5($details['currentpass']) == $rinfo['password']) {
-		$query = "UPDATE users SET password = " . $db->quote(md5($details['newpass'])) . " WHERE id = " . $db->quote($rinfo['id']) ;
+		$query = "UPDATE users SET password = " . $db->quote(md5($details['newpass']), 'text') . " WHERE id = " . $db->quote($rinfo['id'], 'integer') ;
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		logout( _('Password has been changed, please login.'));
 	} else {
 * return values: gives the fullname from a userid.
 */
 function get_fullname_from_userid($id) {
 	global $db;
 	if (is_numeric($id)) {
-		$response = $db->query("SELECT fullname FROM users WHERE id=".$db->quote($id));
+		$response = $db->query("SELECT fullname FROM users WHERE id=".$db->quote($id, 'integer'));
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		$r = $response->fetchRow();
 		return $r["fullname"];
 	} else {
 		error(ERR_INV_ARG);
 function get_owner_from_id($id)
 {
 	global $db;
 	if (is_numeric($id))
 	{
-		$response = $db->query("SELECT fullname FROM users WHERE id=".$db->quote($id));
+		$response = $db->query("SELECT fullname FROM users WHERE id=".$db->quote($id, 'integer'));
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		if ($response->numRows() == 1)
 		{
 			$r = $response->fetchRow();
 			return $r["fullname"];
 */
 function get_fullnames_owners_from_domainid($id) {
 	global $db;
 	if (is_numeric($id)) {
-		$response = $db->query("SELECT users.id, users.fullname FROM users, zones WHERE zones.domain_id=".$db->quote($id)." AND zones.owner=users.id ORDER by fullname");
+		$response = $db->query("SELECT users.id, users.fullname FROM users, zones WHERE zones.domain_id=".$db->quote($id, 'integer')." AND zones.owner=users.id ORDER by fullname");
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		if ($response->numRows() == 0) {
 			return "";
 		} else {
 			$names = array();
 	$userid=$_SESSION["userid"];
 	if (is_numeric($zoneid)) {
 		$response = $db->query("SELECT zones.id
 				FROM zones
-				WHERE zones.owner = " . $db->quote($userid) . "
+				WHERE zones.owner = " . $db->quote($userid, 'integer') . "
-				AND zones.domain_id = ". $db->quote($zoneid)) ;
+				AND zones.domain_id = ". $db->quote($zoneid, 'integer')) ;
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		if ($response->numRows() == 0) {
 			return "0";
 		} else {
 			return "1";
 	global $db;
 	$userid=$_SESSION['userid'];
 	if (v_num($specific)) {
-		$sql_add = "AND users.id = " . $db->quote($specific) ;
+		$sql_add = "AND users.id = " . $db->quote($specific, 'integer') ;
 	} else {
 		if (verify_permission('user_view_others')) {
 			$sql_add = "";
 		} else {
-			$sql_add = "AND users.id = " . $db->quote($userid) ;
+			$sql_add = "AND users.id = " . $db->quote($userid, 'integer') ;
 		}
 	}
 	$query = "SELECT users.id AS uid,
 			username,
 function get_permissions_by_template_id($templ_id=0,$return_name_only=false) {
 	global $db;
 	if ($templ_id > 0) {
 		$limit = ", perm_templ_items
-			WHERE perm_templ_items.templ_id = " . $db->quote($templ_id) . "
+			WHERE perm_templ_items.templ_id = " . $db->quote($templ_id, 'integer') . "
 			AND perm_templ_items.perm_id = perm_items.id";
 	}
 	$query = "SELECT perm_items.id AS id,
 			perm_items.name AS name,
 function get_permission_template_details($templ_id) {
 	global $db;
 	$query = "SELECT *
 			FROM perm_templ
-			WHERE perm_templ.id = " . $db->quote($templ_id);
+			WHERE perm_templ.id = " . $db->quote($templ_id, 'integer');
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	$details = $response->fetchRow();
 	// Fix permission template name and description first.
 	$query = "INSERT INTO perm_templ (name, descr)
 			VALUES ("
-				. $db->quote($details['templ_name']) . ", "
+				. $db->quote($details['templ_name'], 'text') . ", "
-				. $db->quote($details['templ_descr']) . ")";
+				. $db->quote($details['templ_descr'], 'text') . ")";
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	$perm_templ_id = $db->lastInsertId('perm_templ', 'id');
 	foreach ($details['perm_id'] AS $perm_id) {
-		$query = "INSERT INTO perm_templ_items (templ_id, perm_id) VALUES (" . $db->quote($perm_templ_id) . "," . $db->quote($perm_id) . ")";
+		$query = "INSERT INTO perm_templ_items (templ_id, perm_id) VALUES (" . $db->quote($perm_templ_id, 'integer') . "," . $db->quote($perm_id, 'integer') . ")";
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	}
 	return true;
 	global $db;
 	// Fix permission template name and description first.
 	$query = "UPDATE perm_templ
-			SET name = " . $db->quote($details['templ_name']) . ",
+			SET name = " . $db->quote($details['templ_name'], 'text') . ",
-			descr = " . $db->quote($details['templ_descr']) . "
+			descr = " . $db->quote($details['templ_descr'], 'text') . "
-			WHERE id = " . $db->quote($details['templ_id']) ;
+			WHERE id = " . $db->quote($details['templ_id'], 'integer') ;
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	// Now, update list of permissions assigned to this template. We could do
 	// this The Correct Way [tm] by comparing the list of permissions that are
 	$query = "DELETE FROM perm_templ_items WHERE templ_id = " . $details['templ_id'] ;
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	foreach ($details['perm_id'] AS $perm_id) {
-		$query = "INSERT INTO perm_templ_items (templ_id, perm_id) VALUES (" . $db->quote($details['templ_id']) . "," . $db->quote($perm_id) . ")";
+		$query = "INSERT INTO perm_templ_items (templ_id, perm_id) VALUES (" . $db->quote($details['templ_id'], 'integer') . "," . $db->quote($perm_id, 'integer') . ")";
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	}
 	return true;
 		//
 		// First find the current username of the user ID we want to change. If the
 		// current username is not the same as the username that was given by the
 		// user, the username should apparantly changed. If so, check if the "new"
 		// username already exists.
-		$query = "SELECT username FROM users WHERE id = " . $db->quote($details['uid']);
+		$query = "SELECT username FROM users WHERE id = " . $db->quote($details['uid'], 'integer');
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 		$usercheck = array();
 		$usercheck = $response->fetchRow();
 		if ($usercheck['username'] != $details['username']) {
 			// Username of user ID in the database is different from the name
 			// we have been given. User wants a change of username. Now, make
 			// sure it doesn't already exist.
-			$query = "SELECT id FROM users WHERE username = " . $db->quote($details['username']);
+			$query = "SELECT id FROM users WHERE username = " . $db->quote($details['username'], 'text');
 			$response = $db->query($query);
 			if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 			if($response->numRows() > 0) {
 				error(ERR_USER_EXIST);
 		// So, user doesn't want to change username or, if he wants, there is not
 		// another user that goes by the wanted username. So, go ahead!
 		$query = "UPDATE users SET
-				username = " . $db->quote($details['username']) . ",
+				username = " . $db->quote($details['username'], 'text') . ",
-				fullname = " . $db->quote($details['fullname']) . ",
+				fullname = " . $db->quote($details['fullname'], 'text') . ",
-				email = " . $db->quote($details['email']) . ",
+				email = " . $db->quote($details['email'], 'text') . ",
-				description = " . $db->quote($details['descr']) . ",
+				description = " . $db->quote($details['descr'], 'text') . ",
-				active = " . $db->quote($active) ;
+				active = " . $db->quote($active, 'integer') ;
 		// If the user is alllowed to change the permission template, set it.
 		if ($perm_templ_perm_edit == "1") {
-			$query .= ", perm_templ = " . $db->quote($details['templ_id']) ;
+			$query .= ", perm_templ = " . $db->quote($details['templ_id'], 'integer') ;
 		}
 		if(isset($details['password']) && $details['password'] != "") {
-			$query .= ", password = '" . md5($db->quote($details['password'])) . "' ";
+			$query .= ", password = " . $db->quote(md5($details['password']), 'text');
 		}
-		$query .= " WHERE id = " . $db->quote($details['uid']) ;
+		$query .= " WHERE id = " . $db->quote($details['uid'], 'integer') ;
 		$response = $db->query($query);
 		if (PEAR::isError($response)) { error($response->getMessage()); return false; }
 	} else {
 	} else {
 		$active = 0;
 	}
 	$query = "INSERT INTO users (username, password, fullname, email, description, perm_templ, active) VALUES ("
-			. $db->quote($details['username']) . ", "
+			. $db->quote($details['username'], 'text') . ", "
-			. $db->quote(md5($details['password'])) . ", "
+			. $db->quote(md5($details['password']), 'text') . ", "
-			. $db->quote($details['fullname']) . ", "
+			. $db->quote($details['fullname'], 'text') . ", "
-			. $db->quote($details['email']) . ", "
+			. $db->quote($details['email'], 'text') . ", "
-			. $db->quote($details['descr']) . ", "
+			. $db->quote($details['descr'], 'text') . ", "
-			. $db->quote($details['perm_templ']) . ", "
+			. $db->quote($details['perm_templ'], 'integer') . ", "
-			. $db->quote($active)
+			. $db->quote($active, 'integer')
 			. ")";
 	$response = $db->query($query);
 	if (PEAR::isError($response)) { error($response->getMessage()); return false; }

changeset 192	3d18290ac993
parent 190	7a683326ccec
child 195	5ac118d6556c