untaint spam tag levels

author Ivan Kohler <ivan@freeside.biz>

Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)

committer Ivan Kohler <ivan@freeside.biz>

Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)
author Ivan Kohler <ivan@freeside.biz>
Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)
committer Ivan Kohler <ivan@freeside.biz>
Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)
diff --git a/FS/FS/part_export/status_shellcommands.pm b/FS/FS/part_export/status_shellcommands.pm

index 53d2b37..c5200ec 100644 (file)
--- a/FS/FS/part_export/status_shellcommands.pm
+++ b/FS/FS/part_export/status_shellcommands.pm
@@ -43,6 +43,10 @@ sub _export_unsuspend {}
  sub export_setstatus {
    my($self, $svc_acct, $hashref) = @_;
  
+  for (qw( spam_tag2_level spam_kill_level )) {
+    $hashref->{$_} =~ /^\d+(\.\d+)?$/ or return "illegal $_";
+  }
+
    my @shellargs = (
      $svc_acct->svcnum,
      user          => $self->option('user') || 'root',
author	Ivan Kohler <ivan@freeside.biz>
	Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)
committer	Ivan Kohler <ivan@freeside.biz>
	Sat, 26 Jan 2013 21:18:10 +0000 (13:18 -0800)