Merged Revisions 3100-3101 from stable branch.

tbrehm · tbrehm · commit 86985d07e25a · 2012-05-11T10:33:30.000Z
diff --git a/interface/lib/classes/listform.inc.php b/interface/lib/classes/listform.inc.php
@@ -126,7 +126,7 @@ private function getDatasourceData($field)
 
     public function getSearchSQL($sql_where = '') 
     {
-        global $db;
+        global $app, $db;
 
         //* Get config variable
         $list_name = $this->listDef['name'];
@@ -151,9 +151,10 @@ public function getSearchSQL($sql_where = '')
                 }
 
                 //* Store field in session
-                if(isset($_REQUEST[$search_prefix.$field])){
+                if(isset($_REQUEST[$search_prefix.$field]) && !stristr($_REQUEST[$search_prefix.$field],"'")){
                     $_SESSION['search'][$list_name][$search_prefix.$field] = $_REQUEST[$search_prefix.$field];
-                }
+					if(preg_match("/['\\\\]/", $_SESSION['search'][$list_name][$search_prefix.$field])) $_SESSION['search'][$list_name][$search_prefix.$field] = '';
+				}
 
                 if(isset($i['formtype']) && $i['formtype'] == 'SELECT'){
                     if(is_array($i['value'])) {
@@ -181,7 +182,7 @@ public function getSearchSQL($sql_where = '')
                 $field = $i['field'];
                 // if($_REQUEST[$search_prefix.$field] != '') $sql_where .= " $field ".$i["op"]." '".$i["prefix"].$_REQUEST[$search_prefix.$field].$i["suffix"]."' and";
 		        if(isset($_SESSION['search'][$list_name][$search_prefix.$field]) && $_SESSION['search'][$list_name][$search_prefix.$field] != ''){
-                    $sql_where .= " $field ".$i['op']." '".$i['prefix'].$_SESSION['search'][$list_name][$search_prefix.$field].$i['suffix']."' and";
+                    $sql_where .= " $field ".$i['op']." '".$app->db->quote($i['prefix'].$_SESSION['search'][$list_name][$search_prefix.$field].$i['suffix'])."' and";
                 }
             }
         }
@@ -209,12 +210,12 @@ public function getPagingSQL($sql_where = '1')
         }
 
         //* set PAGE to worth request variable "PAGE" - ? setze page auf wert der request variablen "page"
-        if(isset($_REQUEST["page"])) $_SESSION["search"][$list_name]["page"] = $_REQUEST["page"];
+        if(isset($_REQUEST["page"])) $_SESSION["search"][$list_name]["page"] = intval($_REQUEST["page"]);
 
         //* PAGE to 0 set, if look for themselves ?  page auf 0 setzen, wenn suche sich ge�ndert hat.
         if($this->searchChanged == 1) $_SESSION['search'][$list_name]['page'] = 0;
 
-        $sql_von = $_SESSION['search'][$list_name]['page'] * $records_per_page;
+        $sql_von = intval($_SESSION['search'][$list_name]['page'] * $records_per_page);
         $record_count = $app->db->queryOneRecord("SELECT count(*) AS anzahl FROM $table WHERE $sql_where");
         $pages = intval(($record_count['anzahl'] - 1) / $records_per_page);
 
@@ -428,4 +429,4 @@ function escapeArrayValues($search_values) {
 
 }
 
-?>
+?>

Original file line number	Diff line number	Diff line change
`@@ -126,7 +126,7 @@ private function getDatasourceData($field)`
`126`	`126`
`127`	`127`	`public function getSearchSQL($sql_where = '')`
`128`	`128`	`{`
`129`		`- global $db;`
	`129`	`+ global $app, $db;`
`130`	`130`
`131`	`131`	`//* Get config variable`
`132`	`132`	`$list_name = $this->listDef['name'];`
`@@ -151,9 +151,10 @@ public function getSearchSQL($sql_where = '')`
`151`	`151`	`}`
`152`	`152`
`153`	`153`	`//* Store field in session`
`154`		`- if(isset($_REQUEST[$search_prefix.$field])){`
	`154`	`+ if(isset($_REQUEST[$search_prefix.$field]) && !stristr($_REQUEST[$search_prefix.$field],"'")){`
`155`	`155`	`$_SESSION['search'][$list_name][$search_prefix.$field] = $_REQUEST[$search_prefix.$field];`
`156`		`- }`
	`156`	`+ if(preg_match("/['\\\\]/", $_SESSION['search'][$list_name][$search_prefix.$field])) $_SESSION['search'][$list_name][$search_prefix.$field] = '';`
	`157`	`+ }`
`157`	`158`
`158`	`159`	`if(isset($i['formtype']) && $i['formtype'] == 'SELECT'){`
`159`	`160`	`if(is_array($i['value'])) {`
`@@ -181,7 +182,7 @@ public function getSearchSQL($sql_where = '')`
`181`	`182`	`$field = $i['field'];`
`182`	`183`	`// if($_REQUEST[$search_prefix.$field] != '') $sql_where .= " $field ".$i["op"]." '".$i["prefix"].$_REQUEST[$search_prefix.$field].$i["suffix"]."' and";`
`183`	`184`	`if(isset($_SESSION['search'][$list_name][$search_prefix.$field]) && $_SESSION['search'][$list_name][$search_prefix.$field] != ''){`
`184`		`- $sql_where .= " $field ".$i['op']." '".$i['prefix'].$_SESSION['search'][$list_name][$search_prefix.$field].$i['suffix']."' and";`
	`185`	`+ $sql_where .= " $field ".$i['op']." '".$app->db->quote($i['prefix'].$_SESSION['search'][$list_name][$search_prefix.$field].$i['suffix'])."' and";`
`185`	`186`	`}`
`186`	`187`	`}`
`187`	`188`	`}`
`@@ -209,12 +210,12 @@ public function getPagingSQL($sql_where = '1')`
`209`	`210`	`}`
`210`	`211`
`211`	`212`	`//* set PAGE to worth request variable "PAGE" - ? setze page auf wert der request variablen "page"`
`212`		`- if(isset($_REQUEST["page"])) $_SESSION["search"][$list_name]["page"] = $_REQUEST["page"];`
	`213`	`+ if(isset($_REQUEST["page"])) $_SESSION["search"][$list_name]["page"] = intval($_REQUEST["page"]);`
`213`	`214`
`214`	`215`	`//* PAGE to 0 set, if look for themselves ? page auf 0 setzen, wenn suche sich ge�ndert hat.`
`215`	`216`	`if($this->searchChanged == 1) $_SESSION['search'][$list_name]['page'] = 0;`
`216`	`217`
`217`		`- $sql_von = $_SESSION['search'][$list_name]['page'] * $records_per_page;`
	`218`	`+ $sql_von = intval($_SESSION['search'][$list_name]['page'] * $records_per_page);`
`218`	`219`	`$record_count = $app->db->queryOneRecord("SELECT count(*) AS anzahl FROM $table WHERE $sql_where");`
`219`	`220`	`$pages = intval(($record_count['anzahl'] - 1) / $records_per_page);`
`220`	`221`
`@@ -428,4 +429,4 @@ function escapeArrayValues($search_values) {`
`428`	`429`
`429`	`430`	`}`
`430`	`431`
`431`		`-?>`
	`432`	`+?>`