From 955e7d5427906ef544912411d1466fe5561d7f16 Mon Sep 17 00:00:00 2001
From: Janusz Dobrowolski <janusz@frontaccounting.eu>
Date: Mon, 22 Nov 2010 21:07:17 +0000
Subject: [PATCH] Fixed input sanitization.

---
 reporting/prn_redirect.php | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/reporting/prn_redirect.php b/reporting/prn_redirect.php
index 8a64ea39..d827aaa3 100644
--- a/reporting/prn_redirect.php
+++ b/reporting/prn_redirect.php
@@ -29,7 +29,7 @@ if (isset($save_report_selections) && $save_report_selections > 0 && isset($_POS
 if (isset($_GET['xls']))
 {
 	$filename = $_GET['filename'];
-	$unique_name = $_GET['unique'];
+	$unique_name = preg_replace('/[^0-9a-z.]/i', '', $_GET['unique']);
 	$path =  company_path(). '/pdf_files/';
 	header("Content-type: application/vnd.ms-excel");
 	header("Content-Disposition: attachment; filename=$filename" );
@@ -42,7 +42,7 @@ if (isset($_GET['xls']))
 elseif (isset($_GET['xml']))
 {
 	$filename = $_GET['filename'];
-	$unique_name = $_GET['unique'];
+	$unique_name = preg_replace('/[^0-9a-z.]/i', '', $_GET['unique']);
 	$path =  company_path(). '/pdf_files/';
 	header("content-type: text/xml");
 	header("Content-Disposition: attachment; filename=$filename");
@@ -61,7 +61,8 @@ if (!isset($_POST['REP_ID'])) {	// print link clicked
 			? $_GET['PARAM_'.$i] : $def_pars[$i];
 	}
 }
-$rep = $_POST['REP_ID'];
+
+$rep = preg_replace('/[^a-z_0-9]/i', '', $_POST['REP_ID']);
 
 $rep_file = find_custom_file("/reporting/rep$rep.php");
 
-- 
2.30.2