fixed a few more unescaped ids

9 files changed, 10 insertions, 10 deletions

diff --git a/lib/class/access.class.php b/lib/class/access.class.php
index a49d23e2..04d3a500 100644
--- a/lib/class/access.class.php
+++ b/lib/class/access.class.php
@@ -45,7 +45,7 @@ class Access {
 
 
 		/* Assign id for use in get_info() */
-		$this->id = $access_id;
+		$this->id = intval($access_id);
 
 		$info = $this->get_info();
 		$this->name 	= $info->name;
diff --git a/lib/class/album.class.php b/lib/class/album.class.php
index c1deb274..5e8ea565 100644
--- a/lib/class/album.class.php
+++ b/lib/class/album.class.php
@@ -43,7 +43,7 @@ class Album {
 		if ($album_id) { 
 
 			/* Assign id for use in get_info() */
-			$this->id = $album_id;
+			$this->id = intval($album_id);
 
 			/* Get the information from the db */
 			if ($info = $this->get_info()) {
diff --git a/lib/class/catalog.class.php b/lib/class/catalog.class.php
index 50a48d31..5a229092 100644
--- a/lib/class/catalog.class.php
+++ b/lib/class/catalog.class.php
@@ -53,7 +53,7 @@ class Catalog {
 		/* If we have passed an id then do something */
 		if ($catalog_id) {
 			/* Assign id for use in get_info() */
-			$this->id = $catalog_id;
+			$this->id = intval($catalog_id);
 
 			/* Get the information from the db */
 			$info = $this->get_info();
diff --git a/lib/class/flag.class.php b/lib/class/flag.class.php
index fe5a0f8c..566822b2 100644
--- a/lib/class/flag.class.php
+++ b/lib/class/flag.class.php
@@ -40,7 +40,7 @@ class Flag {
 	 */
 	function Flag($flag_id=0) { 
 
-		$this->id = $flag_id;
+		$this->id = intval($flag_id);
 
 		if (!$this->id) { return false; }
 
diff --git a/lib/class/genre.class.php b/lib/class/genre.class.php
index 5d4e13d1..06b2bce5 100644
--- a/lib/class/genre.class.php
+++ b/lib/class/genre.class.php
@@ -38,7 +38,7 @@ class Genre {
 	function Genre($genre_id=0) { 
 
 		if ($genre_id > 0) { 
-			$this->id 	= $genre_id;
+			$this->id 	= intval($genre_id);
 			$info 		= $this->_get_info();
 			$this->name 	= $info['name'];
 		}
diff --git a/lib/class/playlist.class.php b/lib/class/playlist.class.php
index ece5439a..ec5f70b6 100644
--- a/lib/class/playlist.class.php
+++ b/lib/class/playlist.class.php
@@ -45,7 +45,7 @@ class Playlist {
 
 		if (!$playlist_id) { return false; }
 		
-		$this->id 	= $playlist_id;
+		$this->id 	= intval($playlist_id);
 		$info 		= $this->_get_info();
 		$this->name	= $info['name'];
 		$this->user	= $info['user'];
diff --git a/lib/class/rating.class.php b/lib/class/rating.class.php
index 136d212e..e79ea0ef 100644
--- a/lib/class/rating.class.php
+++ b/lib/class/rating.class.php
@@ -41,8 +41,8 @@ class Rating {
 	 */
 	function Rating($id,$type) { 
 
-		$this->id 	= $id;
-		$this->type 	= $type;
+		$this->id 	= intval($id);
+		$this->type 	= sql_escape($type);
 
 		if (intval($id) > 1) { 
 			$this->get_average();
diff --git a/lib/class/song.class.php b/lib/class/song.class.php
index b02dc2e4..c08594de 100644
--- a/lib/class/song.class.php
+++ b/lib/class/song.class.php
@@ -59,7 +59,7 @@ class Song {
 		if ($song_id) { 
 
 			/* Assign id for use in get_info() */
-			$this->id = sql_escape($song_id);
+			$this->id = intval($song_id);
 
 			/* Get the information from the db */
 			if ($info = $this->get_info()) {
diff --git a/lib/class/user.class.php b/lib/class/user.class.php
index 2df961e9..084ae359 100644
--- a/lib/class/user.class.php
+++ b/lib/class/user.class.php
@@ -45,7 +45,7 @@ class User {
 			return true;
 		}
 
-		$this->username 	= $username;
+		$this->username 	= sql_escape($username);
 		$info 			= $this->get_info();
 		$this->username 	= $info->username;
 		$this->fullname 	= $info->fullname;