From 8e8e64543407170b453142fabe15275e80827bb4 Mon Sep 17 00:00:00 2001
From: jakani24 <janis.st44@gmail.com>
Date: Thu, 25 Apr 2024 17:04:38 +0200
Subject: [PATCH] Update database_settings_functions.php

---
 .../secure_zone/php/database_settings_functions.php       | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/server/cyberhex-code/system/secure_zone/php/database_settings_functions.php b/src/server/cyberhex-code/system/secure_zone/php/database_settings_functions.php
index ef3ca7e..3877d61 100644
--- a/src/server/cyberhex-code/system/secure_zone/php/database_settings_functions.php
+++ b/src/server/cyberhex-code/system/secure_zone/php/database_settings_functions.php
@@ -42,16 +42,16 @@ function safe_settings($db){//load settings
 	//update signature
 	if($_GET["update"]=="sig"){	
 		$id=htmlspecialchars($_GET["id"]);
-		$stmt = $conn->prepare("UPDATE $db set signature= ? WHERE id=$id");
-		$stmt->bind_param("s",$value);
+		$stmt = $conn->prepare("UPDATE $db set signature= ? WHERE id=?");
+		$stmt->bind_param("si",$value,$id);
 		$stmt->execute();
 		$stmt->close();
 	}
 	//update signature description
 	if($_GET["update"]=="sig_desc"){	
 		$id=htmlspecialchars($_GET["id"]);
-		$stmt = $conn->prepare("UPDATE $db set description= ? WHERE id=$id");
-		$stmt->bind_param("s",$value);
+		$stmt = $conn->prepare("UPDATE $db set description= ? WHERE id=?");
+		$stmt->bind_param("si",$value,$id);
 		$stmt->execute();
 		$stmt->close();
 	}