From 8cd8d0922f217b3657ddcd61b918ad7c44efb846 Mon Sep 17 00:00:00 2001
From: denise <denise@denise-DX4860sourcefabric.org>
Date: Thu, 9 May 2013 16:05:04 -0400
Subject: [PATCH] CC-5121: fix some SQL statements not being escaped/prepared

---
 airtime_mvc/application/models/LoginAttempts.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/airtime_mvc/application/models/LoginAttempts.php b/airtime_mvc/application/models/LoginAttempts.php
index ecb4da5f9..3997bc1ab 100644
--- a/airtime_mvc/application/models/LoginAttempts.php
+++ b/airtime_mvc/application/models/LoginAttempts.php
@@ -29,7 +29,7 @@ class Application_Model_LoginAttempts
     public static function resetAttempts($ip)
     {
         $sql = "select count(*) from cc_login_attempts WHERE ip= :ip";
-        $res = Application_Common_Database::prepareAndExecute($sql, array(':ip'=>$ip), Application_Common_Database::ALL);
+        $res = Application_Common_Database::prepareAndExecute($sql, array(':ip'=>$ip), Application_Common_Database::COLUMN);
         if ($res > 0) {
             $sql = "DELETE FROM cc_login_attempts WHERE ip= :ip";
             Application_Common_Database::prepareAndExecute($sql, array(':ip'=>$ip), Application_Common_Database::EXECUTE);