From 7adbfe143d500c24cc829919571884b7ca9789c3 Mon Sep 17 00:00:00 2001
From: billz <billzimmerman@gmail.com>
Date: Thu, 6 Apr 2023 11:42:11 +0200
Subject: [PATCH] Update connect var sanitization

---
 includes/configure_client.php | 7 ++-----
 1 file changed, 2 insertions(+), 5 deletions(-)

diff --git a/includes/configure_client.php b/includes/configure_client.php
index 18ad4dc2..980c44d9 100755
--- a/includes/configure_client.php
+++ b/includes/configure_client.php
@@ -17,12 +17,9 @@ function DisplayWPAConfig()
 
     if (isset($_POST['connect'])) {
         $result = 0;
-        $iface = escapeshellarg($_SESSION['wifi_client_interface']);
         $netid = intval($_POST['connect']);
-        if (is_numeric($netid)) {
-            exec('sudo wpa_cli -i ' . $iface . ' select_network ' . $netid);
-            $status->addMessage('New network selected', 'success');
-        }
+        exec('sudo wpa_cli -i ' . $_SESSION['wifi_client_interface'] . ' select_network ' . $netid);
+        $status->addMessage('New network selected', 'success');
     } elseif (isset($_POST['wpa_reinit'])) {
         $status->addMessage('Reinitializing wpa_supplicant', 'info', false);
         $force_remove = true;