From 24f825ca0873fa8054b47e48c4b4ced153622d1d Mon Sep 17 00:00:00 2001 From: Marcus Hill Date: Mon, 2 Jan 2023 19:22:21 +0000 Subject: [PATCH] SQL Escape tech username in session. The username is added to most log entries meaning that a simple apostrophe in the name breaks all logging for the user --- login.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/login.php b/login.php index 88a5c64b..ffe4e853 100644 --- a/login.php +++ b/login.php @@ -59,12 +59,12 @@ if(isset($_POST['login'])){ // User variables $token = $row['user_token']; - $user_name = $row['user_name']; + $user_name = strip_tags(mysqli_real_escape_string($mysqli, $row['user_name'])); $user_id = $row['user_id']; // Session info - $_SESSION['user_id'] = $row['user_id']; - $_SESSION['user_name'] = $row['user_name']; + $_SESSION['user_id'] = $user_id; + $_SESSION['user_name'] = $user_name; $_SESSION['user_role'] = $row['user_role']; $_SESSION['csrf_token'] = bin2hex(random_bytes(78));