From 24deeb3567a4f03d04126d486e64b39c917e083b Mon Sep 17 00:00:00 2001
From: Mattias Michaux <mattias.michaux@gmail.com>
Date: Mon, 2 May 2016 10:37:08 +0200
Subject: [PATCH] Fixed 2 other issues.

---
 CRM/Case/Page/AJAX.php    | 1 +
 CRM/Contact/Page/AJAX.php | 2 ++
 2 files changed, 3 insertions(+)

diff --git a/CRM/Case/Page/AJAX.php b/CRM/Case/Page/AJAX.php
index 64164e1fa6..04d01184a7 100644
--- a/CRM/Case/Page/AJAX.php
+++ b/CRM/Case/Page/AJAX.php
@@ -49,6 +49,7 @@ class CRM_Case_Page_AJAX {
     $excludeCaseIds = array();
     if (!empty($_GET['excludeCaseIds'])) {
       $excludeCaseIds = explode(',', CRM_Utils_Type::escape($_GET['excludeCaseIds'], 'String'));
+      CRM_Utils_Type::escapeAll($excludeCaseIds, 'Integer'));
     }
     $unclosedCases = CRM_Case_BAO_Case::getUnclosedCases($params, $excludeCaseIds, TRUE, TRUE);
     $results = array();
diff --git a/CRM/Contact/Page/AJAX.php b/CRM/Contact/Page/AJAX.php
index 022bf2d469..75c61dbe1d 100644
--- a/CRM/Contact/Page/AJAX.php
+++ b/CRM/Contact/Page/AJAX.php
@@ -760,6 +760,7 @@ LIMIT {$offset}, {$rowCount}
         $elements = explode('-', $name);
         foreach ($elements as $key => $element) {
           $elements[$key] = self::_convertToId($element);
+          CRM_Utils_Type::escapeAll($elements, 'Integer');
         }
         CRM_Core_BAO_PrevNextCache::markSelection($cacheKey, $actionToPerform, $elements);
       }
@@ -769,6 +770,7 @@ LIMIT {$offset}, {$rowCount}
     }
     elseif ($variableType == 'single') {
       $cId = self::_convertToId($name);
+      CRM_Utils_Type::escape($cId, 'Integer');
       $action = ($state == 'checked') ? 'select' : 'unselect';
       CRM_Core_BAO_PrevNextCache::markSelection($cacheKey, $action, $cId);
     }
-- 
2.25.1