From: Andrew Dolgov <fox@bah.spb.su>
Date: Sun, 26 Aug 2007 04:18:41 +0000 (+0100)
Subject: clear_feed_articles: check caller UID
X-Git-Tag: 1.2.15~37
X-Git-Url: https://git.wh0rd.org/?a=commitdiff_plain;h=a8ae1b9a74b19a3b18f47ae0b260a668ebcf41b5;p=tt-rss.git

clear_feed_articles: check caller UID
---

diff --git a/functions.php b/functions.php
index cf5d421c..d82cb38e 100644
--- a/functions.php
+++ b/functions.php
@@ -4698,7 +4698,7 @@
 
 	function clear_feed_articles($link, $id) {
 		$result = db_query($link, "DELETE FROM ttrss_user_entries
-			WHERE feed_id = '$id' AND marked = false");
+			WHERE feed_id = '$id' AND marked = false AND owner_uid = " . $_SESSION["uid"]);
 
 		$result = db_query($link, "DELETE FROM ttrss_entries WHERE 
 			(SELECT COUNT(int_id) FROM ttrss_user_entries WHERE ref_id = id) = 0");