From acab506dcb7dd4fec4b5bac9f16bfa9989776fa8 Mon Sep 17 00:00:00 2001
From: github-actions <github-actions@github.com>
Date: Tue, 6 Aug 2024 13:04:55 +0200
Subject: [PATCH] more hard test for the get parameter

---
 application/controllers/Qso.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/application/controllers/Qso.php b/application/controllers/Qso.php
index 0a02437e9..a5a33f504 100644
--- a/application/controllers/Qso.php
+++ b/application/controllers/Qso.php
@@ -21,7 +21,12 @@ class QSO extends CI_Controller {
         // Getting the live/post mode from GET command
         // 0 = live
         // 1 = post (manual)
-        $data['manual_mode'] = $this->security->xss_clean($this->input->get('manual'));
+        $get_manual_mode = $this->security->xss_clean($this->input->get('manual'));
+        if ($get_manual_mode == '0' || $get_manual_mode == '1') {
+            $data['manual_mode'] = $get_manual_mode;
+        } else {
+            show_404();
+        }
 
 		$data['active_station_profile'] = $this->stations->find_active();