From: skodak <skodak>
Date: Fri, 26 May 2006 11:32:26 +0000 (+0000)
Subject: sanitize submitted numerical values
X-Git-Url: http://git.mjollnir.org/gw?a=commitdiff_plain;h=27e51dfc89cfdbe9ce8861478373ac57a56fba4c;p=moodle.git

sanitize submitted numerical values
---

diff --git a/mod/forum/lib.php b/mod/forum/lib.php
index 140390dac0..27c6697326 100644
--- a/mod/forum/lib.php
+++ b/mod/forum/lib.php
@@ -111,6 +111,10 @@ function forum_add_instance($forum) {
         $forum->assesstimefinish = 0;
     }
 
+    //sanitize given values a bit
+    $forum->warnafter = clean_param($forum->warnafter, PARAM_INT);
+    $forum->blockafter = clean_param($forum->blockafter, PARAM_INT);
+
     if (! $forum->id = insert_record('forum', $forum)) {
         return false;
     }