Fix budget info sanitisation

TheGlobalMail · Oct 10, 2012 · e55ccc9 · e55ccc9
1 parent d5fb641
commit e55ccc9
Showing 1 changed file with 13 additions and 3 deletions.
diff --git a/src/DGM/Service/BudgetPersister.php b/src/DGM/Service/BudgetPersister.php
@@ -37,13 +37,23 @@ public function sanitize()
     {
         foreach ($this->data as $key => $value) {
             if ($key == "name" || $key == "email" || $key == "description") {
-                $this->data[$key] = trim($value);
-                $this->data[$key] = strip_tags($value);
+                $value = trim($value);
+                $value = strip_tags($value);
+            }
+
+            if ($key == "name" || $key == "email") {
+                $value = substr($value, 0, 50);
+            }
+
+            if ($key == "description") {
+                $value = substr($value, 0, 500);
             }
 
             if (isset(Budget::$categoryData[$key])) {
-                $this->data[$key] = (float) $value;
+                $value = (float) $value;
             }
+
+            $this->data[$key] = $value;
         }
     }