From 496f71a4be0bccd1ea884dc0e308162af5c9bdf4 Mon Sep 17 00:00:00 2001
From: Mark Samman <mark.samman@gmail.com>
Date: Wed, 29 Oct 2014 19:48:09 +0100
Subject: [PATCH] Fix SQL injection in user_character_data

---
 engine/function/users.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/engine/function/users.php b/engine/function/users.php
index ac1571c..cb84607 100644
--- a/engine/function/users.php
+++ b/engine/function/users.php
@@ -1233,7 +1233,7 @@ function user_count_accounts() {
 */
 function user_character_data($user_id) {
 	$data = array();
-	$user_id = sanitize($user_id);
+	$user_id = (int)$user_id;
 	$func_num_args = func_num_args();
 	$func_get_args = func_get_args();
 	if ($func_num_args > 1)  {