[Mapbender-commits] r7292 - trunk/mapbender/http/classes
svn_mapbender at osgeo.org
svn_mapbender at osgeo.org
Sun Dec 12 07:35:45 EST 2010
Author: apour
Date: 2010-12-12 04:35:45 -0800 (Sun, 12 Dec 2010)
New Revision: 7292
Modified:
trunk/mapbender/http/classes/class_metadata.php
Log:
done
Modified: trunk/mapbender/http/classes/class_metadata.php
===================================================================
--- trunk/mapbender/http/classes/class_metadata.php 2010-12-12 12:24:49 UTC (rev 7291)
+++ trunk/mapbender/http/classes/class_metadata.php 2010-12-12 12:35:45 UTC (rev 7292)
@@ -1341,9 +1341,19 @@
function intersect($s_minx, $s_miny, $s_maxx, $s_maxy, $db_minx, $db_miny, $db_maxx, $db_maxy, $epsg){
global $con;
/*
- * @security_patch sqli open
+ * @security_patch sqli done
*/
- $result="";
+ $s_minx = floatval($s_minx);
+ $s_miny = floatval($s_miny);
+ $s_maxx = floatval($s_maxx);
+ $s_maxy = floatval($s_maxy);
+ $db_minx = floatval($db_minx);
+ $db_miny = floatval($db_miny);
+ $db_maxx = floatval($db_maxx);
+ $db_maxy = floatval($db_maxy);
+ $epsg = pg_escape_string($epsg);
+
+ $result="";
$sqlint = "SELECT intersects(envelope(geometryFROMtext('LINESTRING(".$s_minx." ".$s_miny.", ".$s_maxx." ".$s_maxy.")',".str_replace("EPSG:","",$epsg).")) " .
",envelope(geometryFROMtext('LINESTRING(".$db_minx." ".$db_miny.", ".$db_maxx." ".$db_maxy.")',".str_replace("EPSG:","",$epsg).")))";
More information about the Mapbender_commits
mailing list