mirror/opensourcepos
1
0
Fork 0
mirror of https://github.com/opensourcepos/opensourcepos.git synced 2026-04-27 10:31:50 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
0fdb3ba37b8fd48faafc08ca89e4537d24f0a5c0
opensourcepos/app/Models
History
Ollama 52b0a83190 Fix SQL injection in custom attribute search 
Parameterize LIKE queries in HAVING clause to prevent SQL injection
when search_custom filter is enabled. Also sanitize search parameter
input at controller level for defense-in-depth.

Fixes vulnerability where user input was directly interpolated into
SQL queries without sanitization.
2026-03-07 19:10:42 +01:00
..
Enums
Reports
Tokens
.gitkeep
Appconfig.php
Attribute.php
Cashup.php
Customer_rewards.php
Customer.php
Dinner_table.php
Employee.php
Refactor: Move ADMIN_MODULES to constants, rename methods to camelCase
2026-03-06 17:25:25 +01:00
Expense_category.php
Expense.php
Giftcard.php
index.html
Inventory.php
Item_kit_items.php
Item_kit.php
Item_quantity.php
Item_taxes.php
Item.php
Fix SQL injection in custom attribute search
2026-03-07 19:10:42 +01:00
Module.php
Person.php
Receiving.php
Rewards.php
Sale.php
Stock_location.php
Supplier.php
Tax_category.php
Tax_code.php
Tax_jurisdiction.php
Tax.php