From 147f5632281b0da6f4232b5d8f4e6998ebf1e40b Mon Sep 17 00:00:00 2001
From: Craig Meyer <meyercr@themeyers.org>
Date: Thu, 11 Aug 2011 18:51:00 -0400
Subject: Extended Actions to include Select by tag (add local modifications,
 fix display for tags starting with a number)

---
 backend.php | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to 'backend.php')

diff --git a/backend.php b/backend.php
index cee1b6f07..9519fea43 100644
--- a/backend.php
+++ b/backend.php
@@ -263,6 +263,8 @@
 			@$vgroup_last_feed = db_escape_string($_REQUEST["vgrlf"]);
 			$order_by = db_escape_string($_REQUEST["order_by"]);
 
+			if (is_numeric($feed)) $feed = (int) $feed;
+
 			/* Feed -5 is a special case: it is used to display auxiliary information
 			 * when there's nothing to load - e.g. no stuff in fresh feed */
 
@@ -277,10 +279,10 @@
 				$label_feed = -11-$feed;
 				$result = db_query($link, "SELECT id FROM ttrss_labels2 WHERE
 					id = '$label_feed' AND owner_uid = " . $_SESSION['uid']);
-			} else if (!$cat_view && $feed > 0) {
+			} else if (!$cat_view && is_numeric($feed) && $feed > 0) {
 				$result = db_query($link, "SELECT id FROM ttrss_feeds WHERE
 					id = '$feed' AND owner_uid = " . $_SESSION['uid']);
-			} else if ($cat_view && $feed > 0) {
+			} else if ($cat_view && is_numeric($feed) && $feed > 0) {
 				$result = db_query($link, "SELECT id FROM ttrss_feed_categories WHERE
 					id = '$feed' AND owner_uid = " . $_SESSION['uid']);
 			}
-- 
cgit v1.2.3-54-g00ecf