Ignore:
Timestamp:
2011/08/04 21:16:27 (13 years ago)
Author:
nanasess
bzr:base-revision:
ohkouchi@loop-az.jp-20110804115150-bra1qpp02iyz14pd
bzr:committer:
Kentaro Ohkouchi <ohkouchi@loop-az.jp>
bzr:file-ids:

data/Smarty/templates/sphone/mypage/favorite.tpl favorite.tpl-20101209134550-lsv02w9wikfx9cj3-19
data/class/pages/mypage/LC_Page_Mypage_Favorite.php 17162@1e3b908f-19a9-db11-a64c-001125224ba8:branches%2Fcomu-ver2%2Fdata%2Fclass%2Fpages%2Fmypage%2FLC_Page_Mypage_Favorite.php
bzr:mapping-version:
v4
bzr:merge:

ohkouchi@loop-az.jp-20110804121602-8bnaips8h02f50m9
bzr:repository-uuid:
1e3b908f-19a9-db11-a64c-001125224ba8
bzr:revision-id:
ohkouchi@loop-az.jp-20110804121625-4i24p29aei5llu2j
bzr:revno:
3831
bzr:revprop:branch-nick:
branches/version-2_11-dev
bzr:root:
branches/version-2_11-dev
bzr:testament:

bazaar-ng testament short form 2.1
revision-id: ohkouchi@loop-az.jp-20110804121625-4i24p29aei5llu2j
sha1: b85ff9df0b6d662cf0ad1d579db795b7a92da8ce
bzr:text-parents:

data/Smarty/templates/sphone/mypage/favorite.tpl svn-v4:1e3b908f-19a9-db11-a64c-001125224ba8:branches/version-2_11-dev:21107
data/class/pages/mypage/LC_Page_Mypage_Favorite.php svn-v4:1e3b908f-19a9-db11-a64c-001125224ba8:branches/version-2_11-dev:21047
bzr:timestamp:
2011-08-04 21:16:25.068000078 +0900
bzr:user-agent:
bzr2.3.1+bzr-svn1.1.0dev0
Message:

#1413 POST の値を数値チェックするよう修正

File:
1 edited

Legend:

Unmodified
Added
Removed

  • branches/version-2_11-dev/data/class/pages/mypage/LC_Page_Mypage_Favorite.php

    r21047 r21128  
    7575            case 'delete_favorite': 
    7676                // お気に入り削除 
    77                 $this->lfDeleteFavoriteProduct($customer_id, $_POST['product_id']); 
     77                $this->lfDeleteFavoriteProduct($customer_id, intval($_POST['product_id'])); 
    7878                break; 
    7979            case 'getList': 
    8080                // スマートフォン版のもっと見るボタン用 
    8181                // ページ送り用 
    82                 if (isset($_POST['pageno'])) { 
    83                     $this->tpl_pageno = htmlspecialchars($_POST['pageno'], ENT_QUOTES, CHAR_CODE); 
    84                 } 
    85                 $this->arrFavorite = $this->lfGetFavoriteProduct($customer_id, $this); 
    86                 $this->arrFavorite = $this->lfSetPriceTax($this->arrFavorite); 
    87                 echo SC_Utils_Ex::jsonEncode($this->arrFavorite); 
     82                if (isset($_POST['pageno'])) { 
     83                    $this->tpl_pageno = intval($_POST['pageno']); 
     84                } 
     85                $this->arrFavorite = $this->lfGetFavoriteProduct($customer_id, $this); 
     86                $this->arrFavorite = $this->lfSetPriceTax($this->arrFavorite); 
     87                echo SC_Utils_Ex::jsonEncode($this->arrFavorite); 
    8888                exit; 
    8989                break; 
     
    9292        // ページ送り用 
    9393        if (isset($_POST['pageno'])) { 
    94             $this->tpl_pageno = htmlspecialchars($_POST['pageno'], ENT_QUOTES, CHAR_CODE); 
     94            $this->tpl_pageno = intval($_POST['pageno']); 
    9595        } 
    9696        $this->arrFavorite = $this->lfGetFavoriteProduct($customer_id, $this); 
Note: See TracChangeset for help on using the changeset viewer.