fix Unauthenticated SQL Injection in in function delete_oqrs_line

Fixes injection issue reported by @trungpc19
2024-11-07 11:03:33 +00:00 · 2024-11-07 11:03:33 +00:00 · 1362d19608
--- a/application/models/Oqrs_model.php
+++ b/application/models/Oqrs_model.php
@ -190,7 +190,7 @@ class Oqrs_model extends CI_Model {
 	}

 	function delete_oqrs_line($id) {
-        $sql = 'delete from oqrs where id =' . xss_clean($id);
+		$sql = 'delete from oqrs where id =' . xss_clean((intval($id)));

        $query = $this->db->query($sql);