Hamza-Ayed e51d266a0f
Fix #17 : SQL injection + mass data exposure (backend) ...
- Fixed SQL injection in ride/license/get.php (interpolated variable → parameterized query)
- Added admin role checks to all 3 mass data endpoints (driver tokens, passenger tokens, phones+tokens)
- Added pagination (50/page) to all 4 mass data endpoints
- Fixed LIMIT to use placeholders with type binding
2026-06-17 07:45:35 +03:00
2026-06-17 07:45:35 +03:00
2026-06-17 07:05:58 +03:00
2026-06-09 08:40:31 +03:00
2026-06-17 06:31:13 +03:00
2026-06-12 20:40:40 +03:00
2026-06-16 17:47:19 +03:00
2026-06-12 20:40:40 +03:00
2026-06-09 08:40:31 +03:00
2026-06-09 08:40:31 +03:00
2026-06-16 01:17:29 +03:00
2026-06-09 08:40:31 +03:00
2026-06-17 07:45:35 +03:00
2026-06-16 01:17:29 +03:00
2026-06-12 20:40:40 +03:00
2026-06-16 17:47:19 +03:00
2026-06-16 17:47:19 +03:00
2026-06-11 13:47:40 +03:00
2026-06-16 01:17:29 +03:00
2026-06-12 20:40:40 +03:00
2026-06-16 01:17:29 +03:00
2026-06-11 13:47:40 +03:00
2026-06-17 06:31:13 +03:00
2026-06-17 06:53:00 +03:00
2026-06-09 08:40:31 +03:00
2026-06-09 08:40:31 +03:00
2026-06-12 20:40:40 +03:00
2026-06-11 13:47:40 +03:00
2026-06-11 13:47:40 +03:00
2026-06-11 13:47:40 +03:00
2026-06-12 20:40:40 +03:00
2026-06-16 01:17:29 +03:00
2026-06-16 01:17:29 +03:00
2026-06-16 01:17:29 +03:00
2026-06-16 01:17:29 +03:00
2026-06-16 01:17:29 +03:00
2026-06-16 02:52:06 +03:00
2026-06-16 01:17:29 +03:00
2026-06-09 08:40:31 +03:00
2026-06-12 20:40:40 +03:00
2026-06-15 01:37:41 +03:00
2026-06-10 02:44:55 +03:00
2026-06-16 17:47:19 +03:00
2026-06-12 20:40:40 +03:00
2026-06-12 20:40:40 +03:00
2026-06-16 01:17:29 +03:00
2026-06-15 01:37:41 +03:00
2026-06-15 01:37:41 +03:00
2026-06-15 19:39:21 +03:00
2026-06-17 06:57:56 +03:00
2026-06-17 06:22:41 +03:00
e51d266a0f