mirror of
https://gitlab.com/animath/si/plateforme.git
synced 2024-12-24 17:42:23 +00:00
Sécurité
This commit is contained in:
parent
c64ef0646e
commit
2ee1c75d0c
@ -88,7 +88,7 @@ class AttributeTeam
|
||||
|
||||
public function __construct($data)
|
||||
{
|
||||
$this->team_id = $data["team"];
|
||||
$this->team_id = htmlspecialchars($data["team"]);
|
||||
$this->team = Team::fromId($this->team_id);
|
||||
}
|
||||
|
||||
@ -148,7 +148,7 @@ class ValidatePayment
|
||||
global $user;
|
||||
|
||||
foreach ($data as $key => $value)
|
||||
$this->$key = $value;
|
||||
$this->$key = htmlspecialchars($value);
|
||||
|
||||
$this->payment = $user->getPayment();
|
||||
}
|
||||
|
@ -36,7 +36,7 @@ class Pay {
|
||||
public function __construct($data)
|
||||
{
|
||||
foreach ($data as $key => $value)
|
||||
$this->$key = $value;
|
||||
$this->$key = htmlspecialchars($value);
|
||||
|
||||
$this->method = PaymentMethod::fromName(strtoupper($this->method));
|
||||
|
||||
|
@ -22,11 +22,13 @@ if (isset($user) && !$has_error) {
|
||||
|
||||
<form method="POST">
|
||||
<div class="form-group row">
|
||||
<label for="role">Rôle :</label>
|
||||
<select id="role" name="role" onchange="selectRole()" class="custom-select">
|
||||
<option value="participant"><?= Role::getTranslatedName(Role::PARTICIPANT) ?></option>
|
||||
<option value="encadrant"><?= Role::getTranslatedName(Role::ENCADRANT) ?></option>
|
||||
</select>
|
||||
<div class="form-group col-md-12">
|
||||
<label for="role">Rôle :</label>
|
||||
<select id="role" name="role" onchange="selectRole()" class="custom-select">
|
||||
<option value="participant"><?= Role::getTranslatedName(Role::PARTICIPANT) ?></option>
|
||||
<option value="encadrant"><?= Role::getTranslatedName(Role::ENCADRANT) ?></option>
|
||||
</select>
|
||||
</div>
|
||||
</div>
|
||||
|
||||
<div class="form-row">
|
||||
|
Loading…
Reference in New Issue
Block a user