mirror/php-flarum
1
0
Fork 0
mirror of https://github.com/flarum/core.git synced 2025-07-20 08:11:27 +02:00
Code Issues Releases Wiki Activity

fix: Sanitise integer query parameters (#3064)

Browse Source
This commit is contained in:
Sami Mazouz
2021-09-17 20:50:11 +01:00
committed by GitHub
parent c10a30bae9
commit c1a8c6c190
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/Api/Controller/AbstractSerializeController.php
View File

@@ -236,7 +236,7 @@ abstract class AbstractSerializeController implements RequestHandlerInterface
*/ */
protected function extractOffset(ServerRequestInterface $request) protected function extractOffset(ServerRequestInterface $request)
{ {
return $this->buildParameters($request)->getOffset($this->extractLimit($request)) ?: 0; return (int) $this->buildParameters($request)->getOffset($this->extractLimit($request)) ?: 0;
} }
/** /**
@@ -245,7 +245,7 @@ abstract class AbstractSerializeController implements RequestHandlerInterface
*/ */
protected function extractLimit(ServerRequestInterface $request) protected function extractLimit(ServerRequestInterface $request)
{ {
return $this->buildParameters($request)->getLimit($this->maxLimit) ?: $this->limit; return (int) $this->buildParameters($request)->getLimit($this->maxLimit) ?: $this->limit;
} }
/** /**