]> git.wh0rd.org Git - tt-rss.git/commitdiff
Fix PDO query in mail plugin.
authorDave Z <donotreply@example.com>
Mon, 1 Jan 2018 18:33:58 +0000 (13:33 -0500)
committerDave Z <donotreply@example.com>
Mon, 1 Jan 2018 18:33:58 +0000 (13:33 -0500)
plugins/mail/init.php

index 045fd7986f257bdea355c715a5bb046d216d2a68..7da87ed575b5610a184eda96385948d91a5ab86d 100644 (file)
@@ -86,7 +86,7 @@ class Mail extends Plugin {
                print_hidden("method", "sendEmail");
 
                $sth = $this->pdo->prepare("SELECT email, full_name FROM ttrss_users WHERE
-                       id = " . $_SESSION["uid"]);
+                       id = ?";
                $sth->execute([$_SESSION['uid']]);
 
                if ($row = $sth->fetch()) {