makary/phpbb
1
0
Fork 0
mirror of https://github.com/phpbb/phpbb.git synced 2025-06-28 06:08:52 +00:00
Code Issues Projects Releases Packages Wiki Activity

[feature/attach-dl] Fixed the logic in an sql statement

Browse source 
PHPBB3-11042
This commit is contained in:
Fyorl 2012-08-15 06:08:18 +08:00
parent f6e8d938cb
commit 5827250a94
1 changed files with 4 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
phpBB/includes/functions_download.php
View file

@ -690,8 +690,10 @@ function phpbb_download_check_pm_auth($db, $user_id, $msg_id)
$sql = 'SELECT user_id, author_id
FROM ' . PRIVMSGS_TO_TABLE . '
WHERE msg_id = ' . (int) $msg_id . '
AND user_id = ' . (int) $user_id . '
OR author_id = ' . (int) $user_id;
AND (
user_id = ' . (int) $user_id . '
OR author_id = ' . (int) $user_id . '
)';
$result = $db->sql_query_limit($sql, 1);
$allowed = $db->sql_fetchrow($result);
$db->sql_freeresult($result);