Skip to content
Snippets Groups Projects
Commit 2bcf67a9 authored by Prasad's avatar Prasad
Browse files

Merge branch '47156867_SQL_Injection_Email_templates' into 'master' 

Sql injection on email templates has been addressed

See merge request !383
parents 6805598d 369f8776
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
pkg/vtiger/modules/EmailTemplates/modules/EmailTemplates/models/ListView.php
+ 18
9
View file @ 2bcf67a9
......@@ -97,26 +97,35 @@ class EmailTemplates_ListView_Model extends Vtiger_ListView_Model {
$searchKey = $this->get('search_key');
$searchValue = $this->get('search_value');
$whereQuery .= ' WHERE ';
if(!empty($searchKey) && !empty($searchValue)) {
$whereQuery .= "$searchKey LIKE '$searchValue%' AND ";
}
$params = array();
if(!empty($searchKey) && !empty($searchValue)) {
$whereQuery .= " WHERE ? LIKE ? AND ";
$params[] = $searchKey;
$params[] = "%".$searchValue."%";
} else {
$whereQuery .= " WHERE ";
}
//module should be enabled or module should be empty then allow
$moduleActiveCheck = '(vtiger_tab.presence IN (0,2) OR vtiger_emailtemplates.module IS null OR vtiger_emailtemplates.module = "")';
$moduleActiveCheck = '(vtiger_tab.presence IN (0,2) OR vtiger_emailtemplates.module IS NULL OR vtiger_emailtemplates.module = "")';
$listQuery .= $whereQuery. $moduleActiveCheck;
//To retrieve only selected module records
if ($sourceModule) {
$listQuery .= " AND vtiger_emailtemplates.module = '".$sourceModule."'";
$listQuery .= " AND vtiger_emailtemplates.module = ?";
$params[] = $sourceModule;
}
if ($orderBy) {
$listQuery .= " ORDER BY $orderBy $sortOrder";
$listQuery .= " ORDER BY ? ?";
$params[] = $orderBy;
$params[] = $sortOrder;
} else {
$listQuery .= " ORDER BY templateid DESC";
}
$listQuery .= " LIMIT $startIndex,".($pageLimit+1);
$result = $db->pquery($listQuery, array());
$listQuery .= " LIMIT ?,?";
$params[] = $startIndex;
$params[] = $pageLimit + 1;
$result = $db->pquery($listQuery, $params);
$num_rows = $db->num_rows($result);
$listViewRecordModels = array();
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Copyright 2023 Vtiger. All rights reserved.