diff options
| author | friendica <info@friendica.com> | 2013-09-03 16:31:59 -0700 |
|---|---|---|
| committer | friendica <info@friendica.com> | 2013-09-03 16:31:59 -0700 |
| commit | 7b84b8480fe825927ca646c427da5eb78c8b8dba (patch) | |
| tree | bc04df1d833f10e6d6df36a5b06eb48713db08d8 /mod/item.php | |
| parent | 0be8e4061c42372a60e0274e7947edcb81625eaa (diff) | |
| download | volse-hubzilla-7b84b8480fe825927ca646c427da5eb78c8b8dba.tar.gz volse-hubzilla-7b84b8480fe825927ca646c427da5eb78c8b8dba.tar.bz2 volse-hubzilla-7b84b8480fe825927ca646c427da5eb78c8b8dba.zip | |
security fix and ability to change layout on webpage edit form
Diffstat (limited to 'mod/item.php')
| -rw-r--r-- | mod/item.php | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/mod/item.php b/mod/item.php index 56fdda887..da703e916 100644 --- a/mod/item.php +++ b/mod/item.php @@ -624,11 +624,12 @@ function item_post(&$a) { if($orig_post) { - $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `attach` = '%s', `edited` = '%s' WHERE `id` = %d AND `uid` = %d LIMIT 1", + $r = q("UPDATE `item` SET `title` = '%s', `body` = '%s', `attach` = '%s', `edited` = '%s', layout_mid = '%s' WHERE `id` = %d AND `uid` = %d LIMIT 1", dbesc($datarray['title']), dbesc($datarray['body']), dbesc($datarray['attach']), dbesc(datetime_convert()), + dbesc($layout_mid), intval($post_id), intval($profile_uid) ); |