Skip to content
Snippets Groups Projects
Commit b2970c62 authored by James Smith's avatar James Smith
Browse files

fixed code for SQL injection bug poo!

parent 167df354
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
modules/Bio/EnsEMBL/DBSQL/ArchiveStableIdAdaptor.pm
+ 3
3
View file @ b2970c62
......@@ -337,19 +337,19 @@ sub _fetch_archive_id {
my $sql = qq(
(SELECT * FROM stable_id_event sie, mapping_session ms
WHERE sie.mapping_session_id = ms.mapping_session_id
AND sie.old_stable_id = "$stable_id"
AND sie.old_stable_id = ?
$extra_sql1)
UNION
(SELECT * FROM stable_id_event sie, mapping_session ms
WHERE sie.mapping_session_id = ms.mapping_session_id
AND sie.new_stable_id = "$stable_id"
AND sie.new_stable_id = ?
$extra_sql2)
ORDER BY created DESC
LIMIT 1
);
my $sth = $self->prepare($sql);
$sth->execute;
$sth->execute( $stable_id, $stable_id );
my $r = $sth->fetchrow_hashref;
$sth->finish;
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment