1 --- cacti-0.8.7e/graph_view.php 2009-10-02 10:30:43.000000000 +0300
2 +++ cacti/graph_view.php 2009-10-07 12:42:04.032959475 +0300
6 /* ================= input validation ================= */
7 + input_validate_input_regex(get_request_var_request("host_name"), "^([a-zA-Z0-9_.-]+)$");
8 input_validate_input_number(get_request_var_request("host_id"));
9 input_validate_input_number(get_request_var_request("graph_template_id"));
10 input_validate_input_number(get_request_var_request("page"));
11 input_validate_input_number(get_request_var_request("rows"));
12 /* ==================================================== */
14 + if (empty($_REQUEST['host_id']) && !empty($_REQUEST['host_name'])) {
15 + // fill $host_id from $host_name. empty result is ok too, we'll list previous view then
16 + $_REQUEST['host_id'] = db_fetch_cell("select id from host where description='{$_REQUEST['host_name']}'");
19 /* clean up search string */
20 if (isset($_REQUEST["filter"])) {
21 $_REQUEST["filter"] = sanitize_search_string(get_request_var_request("filter"));
25 /* ================= input validation ================= */
26 + input_validate_input_regex(get_request_var_request("host_name"), "^([a-zA-Z0-9_.-]+)$");
27 input_validate_input_number(get_request_var_request("host_id"));
28 input_validate_input_number(get_request_var_request("graph_template_id"));
29 /* ==================================================== */