From bd3caacbdc314d1f3945c131f5aa19fbf6d27bda Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Daniel=20L=C3=B8vbr=C3=B8tte=20Olsen?=
 <daniel.olsen99@gmail.com>
Date: Sun, 15 May 2016 16:01:04 +0200
Subject: [PATCH] Made it a bit less prone to SQL injections?

---
 blomzt/main.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/blomzt/main.php b/blomzt/main.php
index fe2d3b4..8fd6ffe 100644
--- a/blomzt/main.php
+++ b/blomzt/main.php
@@ -66,6 +66,8 @@ function TableExists($table, $conn) {
 }
 
 function addToTable($lat, $lon, $url, $table, $conn) {
+	settype($lat, "double");
+	settype($lon, "double"); 
 	$sql = "INSERT INTO `" . $table . "` (`id`, `location`, `url`, `date_added`) VALUES (NULL, GeomFromText('POINT(" . $lon ." " . $lat . ")',4326), 'test', CURRENT_TIMESTAMP)";
 	//$sql = mysqli_real_escape_string($conn, $sql);
 	printf($sql);