Open danmarsden opened 2 years ago
https://github.com/Veloxnet-LMS/moodle-block_vxg_orgs/blob/master/orgadmin_check.php#L70
That line looks pretty scary - I'd be inclined to cast the $data['orgid'] to an integer within the function so that it is really clear that an injection isn't possible in there.
https://github.com/Veloxnet-LMS/moodle-block_vxg_orgs/blob/master/orgadmin_check.php#L70
That line looks pretty scary - I'd be inclined to cast the $data['orgid'] to an integer within the function so that it is really clear that an injection isn't possible in there.