Support for Register globals = off

author Joey Schulze <joey@infodrom.org>

Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)

committer Joey Schulze <joey@infodrom.org>

Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)
author Joey Schulze <joey@infodrom.org>
Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)
committer Joey Schulze <joey@infodrom.org>
Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)
diff --git a/src/InfoCon/account/account.inc b/src/InfoCon/account/account.inc

index b44a080..a54b9c9 100644 (file)
--- a/src/InfoCon/account/account.inc
+++ b/src/InfoCon/account/account.inc
@@ -3,16 +3,16 @@
          or die("Unable to connect to SQL server");
  
    $ktoname = '';
-  if (isset($blzkto)) {
+  if (isset($_REQUEST[blzkto])) {
      $query = sprintf ("SELECT name FROM account_names WHERE blz_kto = '%s'",
-                     $blzkto);
+                     $_REQUEST[blzkto]);
      $sth = pg_exec ($dbh, $query);
  
      if (pg_NumRows ($sth) > 0) {
        $row = pg_fetch_array ($sth, 0);
        $ktoname = $row['name'];
      } else {
-      $both = explode (":", $blzkto);
+      $both = explode (":", $_REQUEST[blzkto]);
        $ktoname = sprintf ("BLZ %s, Konto %s", $both[0], $both[1]);
      }
    }
author	Joey Schulze <joey@infodrom.org>
	Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)
committer	Joey Schulze <joey@infodrom.org>
	Fri, 29 Dec 2006 19:20:04 +0000 (19:20 +0000)