From cea954008f6588773bffd9e8f647c0292d92f5e2 Mon Sep 17 00:00:00 2001
From: Marcus Hill <bcf8c9f2@opayq.com>
Date: Sat, 20 May 2023 15:33:46 +0100
Subject: [PATCH] Remove SQL-injection vulnerable code in this file that was
 previously fixed in inc_all_client.php

---
 client_document_templates.php | 13 +++++--------
 1 file changed, 5 insertions(+), 8 deletions(-)

diff --git a/client_document_templates.php b/client_document_templates.php
index acfbce60..9506e746 100644
--- a/client_document_templates.php
+++ b/client_document_templates.php
@@ -1,14 +1,11 @@
-<?php 
+<?php
+
+// Default Column Sort by Filter
+$sb = "document_name";
+$o = "ASC";
 
 require_once("inc_all_client.php");
 
-// Sort by
-if (!empty($_GET['sb'])) {
-  $sb = sanitizeInput($_GET['sb']);
-} else {
-  $sb = "document_name";
-}
-
 // Search query SQL snippet
 if (!empty($q)) {
   $query_snippet = "AND (MATCH(document_content_raw) AGAINST ('$q') OR document_name LIKE '%$q%')";