diff --git a/CHANGELOG.md b/CHANGELOG.md index 60ea6c23e99fba3c7558d0ffa905a0cf15506c7e..a744c650776fb3e507b480e58f8ab09af0755dd2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,13 @@ CHANGELOG ========= +6.3.2 (17/02/2025) +------------------ + +- [Fix] tableAjaxData : lorsque la taille du tableau est indéfinie, on retourne 10000 éléments max. + + + 6.3.1 (22/01/2025) ------------------ diff --git a/src/Util.php b/src/Util.php index 8b64f494824a2c93dbe761f94434719c1cc89789..e8d1868d7c1dcb98caac66ab5a2cefc780175943 100644 --- a/src/Util.php +++ b/src/Util.php @@ -15,6 +15,10 @@ class Util $orderCol = $post['orderCol'] ?? null; $orderDir = ($post['orderDir'] ?? 'asc') == 'asc' ? 'asc' : 'desc'; + if (!is_int($size)){ + $size = 10000; + } + if ($orderCol && (str_contains($orderCol, '"') || str_contains($orderCol, "'"))){ $orderCol = null; // protection contre les injections }