From ec08f0f48e80b108a174ed64eebd4ce91e7ed539 Mon Sep 17 00:00:00 2001
From: Chigger <phamtrung962003@gmail.com>
Date: Tue, 5 Nov 2024 17:35:07 +0700
Subject: [PATCH] fix Unauthenticated SQL Injection in in function
 delete_oqrs_line

---
 application/models/Oqrs_model.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/application/models/Oqrs_model.php b/application/models/Oqrs_model.php
index ccc12ef9..2509b4f0 100644
--- a/application/models/Oqrs_model.php
+++ b/application/models/Oqrs_model.php
@@ -190,7 +190,7 @@ class Oqrs_model extends CI_Model {
 	}
 
 	function delete_oqrs_line($id) {
-        $sql = 'delete from oqrs where id =' . xss_clean($id);
+        $sql = 'delete from oqrs where id =' . xss_clean((intval($id)));
 
         $query = $this->db->query($sql);