Fix: security

2012-04-09 22:27:40 +02:00 · 2012-04-09 22:27:40 +02:00 · 56daf57cb1
commit 56daf57cb1
parent 9a4314947d
1 changed files with 7 additions and 7 deletions
--- a/htdocs/admin/tools/export.php
+++ b/htdocs/admin/tools/export.php
@ -28,14 +28,14 @@ require_once(DOL_DOCUMENT_ROOT."/core/class/html.formfile.class.php");

 $langs->load("admin");

-$action=GETPOST('action');
-$what=GETPOST("what");
-$export_type=GETPOST("export_type");
-$file=GETPOST('filename_template');
+$action=GETPOST('action','alpha');
+$what=GETPOST('what','alpha');
+$export_type=GETPOST('export_type','alpha');
+$file=GETPOST('filename_template','alpha');

-$sortfield = GETPOST("sortfield");
-$sortorder = GETPOST("sortorder");
-$page = GETPOST("page");
+$sortfield = GETPOST('sortfield','alpha');
+$sortorder = GETPOST('sortorder','alpha');
+$page = GETPOST('page','int');
 if (! $sortorder) $sortorder="DESC";
 if (! $sortfield) $sortfield="date";
 if ($page < 0) { $page = 0; }