From 58b7cc7cfd0bb86daa3ed4a585936bac5eb395e3 Mon Sep 17 00:00:00 2001 From: Kunal Mehta Date: Mon, 8 Jun 2015 14:36:08 -0700 Subject: [PATCH] Use intval() to make string concatenation in DB query less scary Change-Id: I51d7744b8c7f967e47777b5f3a6e491f4e65f5c8 --- includes/EmailBatch.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/includes/EmailBatch.php b/includes/EmailBatch.php index 69c0f9e2a..e307c0f66 100644 --- a/includes/EmailBatch.php +++ b/includes/EmailBatch.php @@ -339,7 +339,7 @@ class MWEchoEmailBatch { $res = $dbr->select( array( 'echo_email_batch' ), array( 'eeb_user_id' ), - array( 'eeb_user_id > ' . $startUserId ), + array( 'eeb_user_id > ' . intval( $startUserId ) ), __METHOD__, array( 'ORDER BY' => 'eeb_user_id', 'LIMIT' => $batchSize ) );