diff options
Diffstat (limited to 'index.php')
-rw-r--r-- | index.php | 6 |
1 files changed, 3 insertions, 3 deletions
@@ -1,9 +1,9 @@ <?php session_start(); -if(isset($_REQUEST['lat'])) $lat = mysql_escape_string($_REQUEST['lat']); -if(isset($_REQUEST['lng'])) $lng = mysql_escape_string($_REQUEST['lng']); -if(isset($_REQUEST['res'])) $res = $_REQUEST['res']; +if(isset($_REQUEST['lat']) && preg_match('/^\-?[0-9\.]+$/', $_REQUEST['lat']) $lat = $_REQUEST['lat']; +if(isset($_REQUEST['lng']) && preg_match('/^\-?[0-9\.]+$/', $_REQUEST['lng']) $lng = $_REQUEST['lng']; +if(isset($_REQUEST['res']) && preg_match('/^[0-9]+$/', $_REQUEST['res'])) $res = $_REQUEST['res']; //default values if(empty($lat)) $lat=47.07102; |