[AppDB] security fix for editAppVersion
jnewman at codeweavers.com
Thu Jan 6 10:50:12 CST 2005
OK, committed the patch.
On Thu, 2005-01-06 at 16:48 +0100, Paul van Schayck wrote:
> Hey Tony,
> I'm afraid this patch is not entirely correct. We're now doing a
> second addslashes() and we're not checking versiondId and appId.
> Attached is a hopefully correct patch. Would be best to apply this ASAP.
> Security fixes. Use include/db.php
More information about the wine-patches