From db928ef7f34731c7e23ce6bf0c90df59549d4453 Mon Sep 17 00:00:00 2001
From: Tlams <contact@thomasgsp.fr>
Date: Sun, 18 Feb 2018 18:17:40 +0000
Subject: [PATCH] Intval // XSS filter on date val

---
 code/web/www/pages/includes/header.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/code/web/www/pages/includes/header.php b/code/web/www/pages/includes/header.php
index 24c40b4..2926119 100755
--- a/code/web/www/pages/includes/header.php
+++ b/code/web/www/pages/includes/header.php
@@ -19,17 +19,17 @@ $lastdate = "";
 if(!empty($_POST['date']))
 {
     $html_dates = $html->List_Dates($_POST['date']);
-    $lastdate = $_POST['date'];
+    $lastdate = intval($_POST['date']);
 }
 else if(!empty($_GET['date']))
 {
     $html_dates = $html->List_Dates($_GET['date']);
-    $lastdate = $_GET['date'];
+    $lastdate = intval($_GET['date']);
 }
 else
 {
     $html_dates = $html->List_Dates();
-    $lastdate = json_decode($q->GET_Dates("last"), true)['value'];
+    $lastdate = intval(json_decode($q->GET_Dates("last"), true)['value']);
 }
 
 //$html_groups = $html->List_Groups($lastdate);