]> git.mjollnir.org Git - moodle.git/commitdiff
extra cleaning of variables; merged from MOODLE_16_STABLE
authorskodak <skodak>
Tue, 23 May 2006 09:02:13 +0000 (09:02 +0000)
committerskodak <skodak>
Tue, 23 May 2006 09:02:13 +0000 (09:02 +0000)
user/tabs.php

index 85dd670723ad456f4509ff4399f9a465beb6ed70..a67986f34e5ace9fe565bc6a010e2b53cd5e62e2 100644 (file)
@@ -9,6 +9,10 @@
         $filterselect = '';
     }
 
+    //make sure everything is cleaned properly
+    $filtertype   = clean_param($filtertype, PARAM_ALPHA);
+    $filterselect = clean_param($filterselect, PARAM_INT);
+
     if (empty($currenttab) or empty($user) or empty($course)) {
         //error('You cannot call this script in that way');
     }