projects
/
civicrm-core.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
CRM-13554 - validate values of order by
[civicrm-core.git]
/
CRM
/
Mailing
/
Event
/
BAO
/
Bounce.php
diff --git
a/CRM/Mailing/Event/BAO/Bounce.php
b/CRM/Mailing/Event/BAO/Bounce.php
index 10d4ae842efaab512e4f2c8dc3411e3348d2f70b..ce6647a197eea4bed4ab2e476c9c97a75d245844 100644
(file)
--- a/
CRM/Mailing/Event/BAO/Bounce.php
+++ b/
CRM/Mailing/Event/BAO/Bounce.php
@@
-230,6
+230,7
@@
class CRM_Mailing_Event_BAO_Bounce extends CRM_Mailing_Event_DAO_Bounce {
$orderBy = "sort_name ASC, {$bounce}.time_stamp DESC";
if ($sort) {
if (is_string($sort)) {
$orderBy = "sort_name ASC, {$bounce}.time_stamp DESC";
if ($sort) {
if (is_string($sort)) {
+ $sort = CRM_Utils_Type::escape($sort, 'String');
$orderBy = $sort;
}
else {
$orderBy = $sort;
}
else {