From 5104f0205b87688c895ad33f4757b21e89deeda9 Mon Sep 17 00:00:00 2001
From: Niklas Bittner <niklas@bittner.tech>
Date: Sun, 25 Feb 2024 22:27:39 +0100
Subject: [PATCH] fix: database test input sanitization

---
 src/api/database-test.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/api/database-test.php b/src/api/database-test.php
index e57d6ec4..986038af 100644
--- a/src/api/database-test.php
+++ b/src/api/database-test.php
@@ -18,7 +18,7 @@ switch ($_SERVER['REQUEST_METHOD']) {
             $dsn = 'mysql:host=' . $_POST['DATABASE_HOST'] . ';dbname=' . $_POST['DATABASE_NAME'] . ';port=3306;charset=utf8';
             $pdo = new \PDO(
                 $dsn,
-                $_POST['DATABASE_USER'],
+                Sanitiser::getText($_POST['DATABASE_USER']),
                 $_POST['DATABASE_PASSWORD']
             );