summaryrefslogtreecommitdiffstats
path: root/web/template/tu_list.php
diff options
context:
space:
mode:
authorelij <elij.mx@gmail.com>2011-05-11 16:17:12 -0700
committerLukas Fleischer <archlinux@cryptocrack.de>2011-05-17 10:43:42 +0200
commit0898f1447a2d6bdc893f55f4718f867734841361 (patch)
tree22ab9736ad4b92af12daeb3a5215b126c3a8c22c /web/template/tu_list.php
parentd38f3460e55ad4e8486c63902f3b581684d6f188 (diff)
downloadaurweb-0898f1447a2d6bdc893f55f4718f867734841361.tar.xz
test return value from db_query before assuming it is valid
make the sql query form consistent in usage by cleaning up instances where db_query's result was not inspected before attempting to fetch row data from the handle Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de>
Diffstat (limited to 'web/template/tu_list.php')
-rw-r--r--web/template/tu_list.php8
1 files changed, 7 insertions, 1 deletions
diff --git a/web/template/tu_list.php b/web/template/tu_list.php
index 3a927d9..75d9414 100644
--- a/web/template/tu_list.php
+++ b/web/template/tu_list.php
@@ -40,7 +40,13 @@
<td class='<?php print $c ?>'>
<?php
$q = "SELECT * FROM TU_Votes WHERE VoteID = " . $row['ID'] . " AND UserID = " . uid_from_sid($_COOKIE["AURSID"]);
- $hasvoted = mysql_num_rows(db_query($q, $dbh));
+ $result_tulist = db_query($q, $dbh);
+ if ($result_tulist) {
+ $hasvoted = mysql_num_rows($result_tulist);
+ }
+ else {
+ $hasvoted = 0;
+ }
?>
<span class='f5'><span class='blue'>
<?php if ($hasvoted == 0) { ?>