[AppDB] security fix for editAppVersion
Jeremy Newman
jnewman at codeweavers.com
Thu Jan 6 10:50:12 CST 2005
OK, committed the patch.
On Thu, 2005-01-06 at 16:48 +0100, Paul van Schayck wrote:
> Hey Tony,
>
> I'm afraid this patch is not entirely correct. We're now doing a
> second addslashes() and we're not checking versiondId and appId.
>
> Attached is a hopefully correct patch. Would be best to apply this ASAP.
>
> Paul
>
> Changelog:
> Security fixes. Use include/db.php
More information about the wine-patches
mailing list