]> git.wh0rd.org - tt-rss.git/blobdiff - backend.php
git.wh0rd.org / tt-rss.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
backend/la: properly handle situation when article has multiple ref_ids on one accoun...
[tt-rss.git] / backend.php
diff --git a/backend.php b/backend.php
index c7f0628cb9bd4fe7bcba5109b21fb60352cd5607..6b93d1b3c5444c55079fa68e8bdc05b1ca3cc40c 100644 (file)
--- a/backend.php
+++ b/backend.php
@@ -181,7 +181,8 @@
                        $id = db_escape_string($_REQUEST['id']);
 
                        $result = db_query($link, "SELECT link FROM ttrss_entries, ttrss_user_entries
-                               WHERE id = '$id' AND id = ref_id AND owner_uid = '".$_SESSION['uid']."'");
+                               WHERE id = '$id' AND id = ref_id AND owner_uid = '".$_SESSION['uid']."'
+                               LIMIT 1");
 
                        if (db_num_rows($result) == 1) {
                                $article_url = db_fetch_result($result, 0, 'link');
@@ -585,8 +586,7 @@
 
                case "fbexport":
 
-                       // TODO: change to _POST
-                       $access_key = db_escape_string($_REQUEST["key"]);
+                       $access_key = db_escape_string($_POST["key"]);
 
                        // TODO: rate limit checking using last_connected
                        $result = db_query($link, "SELECT id FROM ttrss_linked_instances
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/