safety-screen/Nominatim
1
0
Fork 0
forked from hans/Nominatim
Code Pull Requests Activity
Files
51f6db2e9c02d414ef283ef71abf6c46e6fc9ba6
Nominatim/website
History
Sarah Hoffmann 51f6db2e9c properly escape class parameter 
The class parameter was used as is, allowing for potential
SQL injection via the API.

Thanks to @bladeswords for finding this.
2020-05-02 21:58:16 +02:00
..
css
update leaflet.js 1.0 => 1.3
2018-06-14 02:18:00 +02:00
images
status after hackweekend London
2016-01-15 17:11:12 +01:00
js
UI: update the switch-to-reverse link after each map click
2019-02-24 16:34:21 +01:00
deletable.php
Nominatim::DB support input variables, custom error messages
2019-03-10 16:56:36 +01:00
details.php
properly escape class parameter
2020-05-02 21:58:16 +02:00
hierarchy.php
/hierarchy.php was missing namespace calling AddressDetails
2019-07-28 22:05:51 +02:00
lookup.php
lookup endpoint returns boundingbox
2019-08-05 23:32:46 +02:00
polygons.php
Nominatim::DB support input variables, custom error messages
2019-03-10 16:56:36 +01:00
reverse.php
Nominatim::DB support input variables, custom error messages
2019-03-10 16:56:36 +01:00
search.php
Fixed PHP warning from #1523
2019-10-15 08:46:19 +02:00
status.php
replace database abstraction DB with PDO
2019-03-09 00:18:15 +01:00