fixes potential SQL injection vector in Active Record offset()

commit: 0e857631f5c6f38c5715450ea3f6ff514ac65b2c [log] [tgz]
author: kenjis <kenji@codeigniter.jp> Fri Sep 02 08:41:17 2011 +0900
committer: kenjis <kenji@codeigniter.jp> Fri Sep 02 08:41:17 2011 +0900
tree: ed93ec7a185bd77a0dbc533ea47ec5789da30a4f
parent: 886d87c616bd422585c6a1190b0e1b72bc661269 [diff] [blame]
diff --git a/system/database/DB_active_rec.php b/system/database/DB_active_rec.php
index 37d162b..89766e3 100644
--- a/system/database/DB_active_rec.php
+++ b/system/database/DB_active_rec.php

@@ -894,7 +894,7 @@
 	 */
 	public function offset($offset)
 	{
-		$this->ar_offset = $offset;
+		$this->ar_offset = (int) $offset;
 		return $this;
 	}
commit	0e857631f5c6f38c5715450ea3f6ff514ac65b2c	[log] [tgz]
author	kenjis <kenji@codeigniter.jp>	Fri Sep 02 08:41:17 2011 +0900
committer	kenjis <kenji@codeigniter.jp>	Fri Sep 02 08:41:17 2011 +0900
tree	ed93ec7a185bd77a0dbc533ea47ec5789da30a4f
parent	886d87c616bd422585c6a1190b0e1b72bc661269 [diff] [blame]