diff --git a/web/yaamp/modules/renting/RentingController.php b/web/yaamp/modules/renting/RentingController.php index cd83274..430228a 100644 --- a/web/yaamp/modules/renting/RentingController.php +++ b/web/yaamp/modules/renting/RentingController.php @@ -266,10 +266,10 @@ class RentingController extends CommonController public function actionOrderSave() { - $renter = getdbo('db_renters', XssFilter(getparam('order_renterid'))); + $renter = getdbo('db_renters', XssFilter(''.getparam('order_renterid'))); if(!$renter || $renter->address != user()->getState('yaamp-deposit')) return; - $job = getdbo('db_jobs', XssFilter(getparam('order_id'))); + $job = getdbo('db_jobs', XssFilter(''.getparam('order_id'))); if(!$job) { $job = new db_jobs; @@ -284,7 +284,7 @@ class RentingController extends CommonController $job->speed = getparam('order_speed')*1000000; if( empty($job->algo) || empty($job->username) || empty($job->password) || empty($job->price) || - empty($job->speed) || empty(getparam('order_address')) || empty(getparam('order_host'))) + empty($job->speed) || empty(''.getparam('order_address')) || empty(''.getparam('order_host'))) { $this->redirect('/renting'); return; @@ -325,7 +325,7 @@ class RentingController extends CommonController public function actionOrderDialog() { - $renter = getrenterparam(getparam('address')); + $renter = getrenterparam(''.getparam('address')); if(!$renter) return; $a = 'x11'; @@ -390,7 +390,7 @@ end; public function actionResetSpent() { - $renter = getrenterparam(getparam('address')); + $renter = getrenterparam(''.getparam('address')); if(!$renter) return; $renter->custom_start = 0; diff --git a/web/yaamp/modules/renting/all_orders_results.php b/web/yaamp/modules/renting/all_orders_results.php index 92ac0a5..6deca17 100644 --- a/web/yaamp/modules/renting/all_orders_results.php +++ b/web/yaamp/modules/renting/all_orders_results.php @@ -5,7 +5,7 @@ $defaultalgo = user()->getState('yaamp-algo'); $rent = dboscalar("select rent from hashrate where algo=:algo order by time desc limit 1", array(':algo'=>$defaultalgo)); $rent = mbitcoinvaluetoa($rent); -$renter = getrenterparam(getparam('address')); +$renter = getrenterparam(''.getparam('address')); echo "
"; echo "
All started jobs ($defaultalgo) - Current Price $rent
"; diff --git a/web/yaamp/modules/renting/balance_results.php b/web/yaamp/modules/renting/balance_results.php index 1d6eae6..66f99e3 100644 --- a/web/yaamp/modules/renting/balance_results.php +++ b/web/yaamp/modules/renting/balance_results.php @@ -1,6 +1,6 @@ "; diff --git a/web/yaamp/modules/renting/orders_results.php b/web/yaamp/modules/renting/orders_results.php index febcd89..54a945c 100644 --- a/web/yaamp/modules/renting/orders_results.php +++ b/web/yaamp/modules/renting/orders_results.php @@ -1,6 +1,6 @@ "; diff --git a/web/yaamp/modules/renting/tx.php b/web/yaamp/modules/renting/tx.php index 1f043a9..8c6c6ee 100644 --- a/web/yaamp/modules/renting/tx.php +++ b/web/yaamp/modules/renting/tx.php @@ -2,7 +2,7 @@ require dirname(__FILE__).'/../../ui/lib/pageheader.php'; -$renter = getrenterparam(getparam('address')); +$renter = getrenterparam(''.getparam('address')); if(!$renter) return; $this->pageTitle = "$renter->address | yiimp";