X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=view.php;h=2c45b0d4f7deeaf2498fd51c6044f9cfc01450de;hp=2f688f67c37856ef6e44cec0285b16b38c8ac048;hb=b17c72e5a671033c7079e43f28a43537e9f16ccf;hpb=75ad748a68473ace540251427a74fb781b1145e9 diff --git a/view.php b/view.php index 2f688f67c3..2c45b0d4f7 100644 --- a/view.php +++ b/view.php @@ -37,8 +37,6 @@ require_once("inc/libs/security_functions.php"); // Init "action" and "what" global $what, $action; $GLOBALS['what'] = ""; $GLOBALS['action'] = ""; -if (!empty($_GET['action'])) $GLOBALS['action'] = secureString($_GET['action']); -if (!empty($_GET['what'])) $GLOBALS['what'] = secureString($_GET['what']); // Set module $GLOBALS['module'] = "view"; $CSS = -1; @@ -51,11 +49,11 @@ if (((!empty($_GET['user'])) || (!empty($_GET['reseller']))) && (!empty($_GET['b $VIEW = 1; // for later things... ;-) - $result = SQL_QUERY_ESC("SELECT url FROM "._MYSQL_PREFIX."_refbanner WHERE id=%d LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT url FROM "._MYSQL_PREFIX."_refbanner WHERE id=%s LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { list($url) = SQL_FETCHROW($result); SQL_FREERESULT($result); - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET counter=counter+1 WHERE id=%d LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET counter=counter+1 WHERE id=%s LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__); $type = substr($url, -3); @header ("Content-Type: image/".$type);