diff options
Diffstat (limited to 'h-source')
-rw-r--r-- | h-source/Application/Controllers/SearchController.php | 18 |
1 files changed, 9 insertions, 9 deletions
diff --git a/h-source/Application/Controllers/SearchController.php b/h-source/Application/Controllers/SearchController.php index cb314c5..3d65d2c 100644 --- a/h-source/Application/Controllers/SearchController.php +++ b/h-source/Application/Controllers/SearchController.php @@ -128,15 +128,15 @@ class SearchController extends BaseController if (next($lspciArray) !== false) { $item = trim(current($lspciArray)); - if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]]+$/i', $item ) ) + if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]\#]+$/i', $item ) ) { $flag = false; break; } if( preg_match( '/Class\:(.*)\[(.*)\]/i', $item, $matches ) ) { - $temp['className'] = $matches[1]; - $temp['classId'] = $matches[2]; + $temp['className'] = sanitizeAll($matches[1]); + $temp['classId'] = sanitizeAll($matches[2]); } else { @@ -154,15 +154,15 @@ class SearchController extends BaseController if (next($lspciArray) !== false) { $item = trim(current($lspciArray)); - if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]]+$/i', $item ) ) + if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]\#]+$/i', $item ) ) { $flag = false; break; } if( preg_match( '/Vendor\:(.*)\[(.*)\]/i', $item, $matches ) ) { - $temp['vendorName'] = $matches[1]; - $temp['vendorId'] = $matches[2]; + $temp['vendorName'] = sanitizeAll($matches[1]); + $temp['vendorId'] = sanitizeAll($matches[2]); } else { @@ -180,15 +180,15 @@ class SearchController extends BaseController if (next($lspciArray) !== false) { $item = trim(current($lspciArray)); - if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]]+$/i', $item ) ) + if( !preg_match( '/^[a-zA-Z0-9\-\_\.\,\;\:\+\s\(\)\/\[\]\#]+$/i', $item ) ) { $flag = false; break; } if( preg_match( '/Device\:(.*)\[(.*)\]/i', $item, $matches ) ) { - $temp['deviceName'] = $matches[1]; - $temp['deviceId'] = $matches[2]; + $temp['deviceName'] = sanitizeAll($matches[1]); + $temp['deviceId'] = sanitizeAll($matches[2]); } else { |