Update monero_payments.php
This commit is contained in:
parent
a959a97c2f
commit
882a923234
@ -315,8 +315,10 @@ class Monero_Gateway extends WC_Payment_Gateway
|
|||||||
if (!isset($_COOKIE['payment_id'])) {
|
if (!isset($_COOKIE['payment_id'])) {
|
||||||
$payment_id = bin2hex(openssl_random_pseudo_bytes(8));
|
$payment_id = bin2hex(openssl_random_pseudo_bytes(8));
|
||||||
setcookie('payment_id', $payment_id, time() + 2700);
|
setcookie('payment_id', $payment_id, time() + 2700);
|
||||||
} else
|
} else{
|
||||||
$payment_id = sanitize_text_field($_COOKIE['payment_id']);
|
// Please fix this SQLI injection! TODO: Fix me!
|
||||||
|
$payment_id = $_COOKIE['payment_id'];
|
||||||
|
}
|
||||||
return $payment_id;
|
return $payment_id;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
Loading…
Reference in New Issue
Block a user