From 0248992ff2066beac925092beb6c014469beaf62 Mon Sep 17 00:00:00 2001 From: Regis Houssin Date: Fri, 10 Mar 2006 18:08:37 +0000 Subject: [PATCH] =?UTF-8?q?am=E9lioration=20de=20la=20s=E9curit=E9?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- htdocs/societe/info.php | 6 +++--- htdocs/societe/notify/fiche.php | 2 +- htdocs/socnote.php | 8 ++++---- 3 files changed, 8 insertions(+), 8 deletions(-) diff --git a/htdocs/societe/info.php b/htdocs/societe/info.php index 472613664ef..819a682ca48 100644 --- a/htdocs/societe/info.php +++ b/htdocs/societe/info.php @@ -65,9 +65,9 @@ llxHeader(); */ $soc = new Societe($db); -$soc->id = $_GET["socid"]; -$soc->fetch($_GET["socid"]); -$soc->info($_GET["socid"]); +$soc->id = $socid; +$soc->fetch($socid); +$soc->info($socid); $h=0; diff --git a/htdocs/societe/notify/fiche.php b/htdocs/societe/notify/fiche.php index 20df5b40e9e..cbb9ddddb9f 100644 --- a/htdocs/societe/notify/fiche.php +++ b/htdocs/societe/notify/fiche.php @@ -110,7 +110,7 @@ if ($_GET["action"] == 'delete') * */ $soc = new Societe($db); -$soc->id = $_GET["socid"]; +$soc->id = $socid; if ( $soc->fetch($soc->id) ) { diff --git a/htdocs/socnote.php b/htdocs/socnote.php index 4c891a71ba1..6cf5834f6f6 100644 --- a/htdocs/socnote.php +++ b/htdocs/socnote.php @@ -59,7 +59,7 @@ if ($_POST["action"] == 'add') { $sql = "UPDATE ".MAIN_DB_PREFIX."societe SET note='".addslashes($_POST["note"])."' WHERE idp=".$_POST["socid"]; $result = $db->query($sql); - $_GET["socid"]=$_POST["socid"]; // Pour retour sur fiche + $socid=$_POST["socid"]; // Pour retour sur fiche } @@ -69,10 +69,10 @@ if ($_POST["action"] == 'add') { llxHeader(); -if ($_GET["socid"] > 0) +if ($socid > 0) { - $societe = new Societe($db, $_GET["socid"]); - $societe->fetch($_GET["socid"]); + $societe = new Societe($db, $socid); + $societe->fetch($socid); $h=0;