Validate queue_id is a positive integer before passing to the BAO

author Seamus Lee <seamuslee001@gmail.com>

Mon, 27 May 2019 06:27:25 +0000 (16:27 +1000)

committer Seamus Lee <seamuslee001@gmail.com>

Tue, 28 May 2019 22:33:09 +0000 (08:33 +1000)
author Seamus Lee <seamuslee001@gmail.com>
Mon, 27 May 2019 06:27:25 +0000 (16:27 +1000)
committer Seamus Lee <seamuslee001@gmail.com>
Tue, 28 May 2019 22:33:09 +0000 (08:33 +1000)
diff --git a/extern/open.php b/extern/open.php

index c48945c765372679a2c0e24957ae4feaac6e81b4..b5db5f7e70e34171a70420ac7888cbc1172c13f0 100644 (file)
--- a/extern/open.php
+++ b/extern/open.php
@@ -2,10 +2,12 @@
  require_once '../civicrm.config.php';
  require_once 'CRM/Core/Config.php';
  require_once 'CRM/Core/Error.php';
-require_once 'CRM/Utils/Array.php';
+require_once 'CRM/Utils/Type.php';
+require_once 'CRM/Utils/Rule.php';
+require_once 'CRM/Utils/Request.php';
  
  $config = CRM_Core_Config::singleton();
-$queue_id = CRM_Utils_Array::value('q', $_GET);
+$queue_id = CRM_Utils_Request::retrieveValue('q', 'Positive', NULL, FALSE, 'GET');
  if (!$queue_id) {
    echo "Missing input parameters\n";
    exit();
author	Seamus Lee <seamuslee001@gmail.com>
	Mon, 27 May 2019 06:27:25 +0000 (16:27 +1000)
committer	Seamus Lee <seamuslee001@gmail.com>
	Tue, 28 May 2019 22:33:09 +0000 (08:33 +1000)