Public_Tools/wavelog
2
0
Fork 0
mirror of https://github.com/wavelog/wavelog.git synced 2026-03-22 10:24:14 +00:00
Code Issues Packages Projects Releases Wiki Activity

Removed never used (dangerous!) functions, where one can inject SQL to

Browse Source
This commit is contained in:
int2001
2024-01-10 20:16:22 +00:00
parent 237eb0c204
commit 833fd68b2a
1 changed files with 1 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
application/models/Logbook_model.php
View File

@@ -4208,17 +4208,7 @@ function lotw_last_qsl_date($user_id) {
* Same as check_dxcc_table, but the functionality is in
* a stored procedure which we call
*/
public function check_dxcc_stored_proc($call, $date){
$this->db->query("call find_country('".$call."','".$date."', @country, @adif, @cqz)");
$res = $this->db->query("select @country as country, @adif as adif, @cqz as cqz");
$d = $res->result_array();
// Should only be one result.
// NOTE: might cause unexpected data if there's an
// error with clublog.org data.
return $d[0];
}
public function check_missing_dxcc_id($all){
// get all records with no COL_DXCC
$this->db->select("COL_PRIMARY_KEY, COL_CALL, COL_TIME_ON, COL_TIME_OFF");