From 882a92323493fa27f0ee4592fd862c76cc82a1b0 Mon Sep 17 00:00:00 2001
From: serhack <27734319+serhack@users.noreply.github.com>
Date: Wed, 22 Nov 2017 18:23:05 +0100
Subject: [PATCH] Update monero_payments.php

---
 monero/include/monero_payments.php | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/monero/include/monero_payments.php b/monero/include/monero_payments.php
index 98b95be..af822b5 100644
--- a/monero/include/monero_payments.php
+++ b/monero/include/monero_payments.php
@@ -315,8 +315,10 @@ class Monero_Gateway extends WC_Payment_Gateway
         if (!isset($_COOKIE['payment_id'])) {
             $payment_id = bin2hex(openssl_random_pseudo_bytes(8));
             setcookie('payment_id', $payment_id, time() + 2700);
-        } else
-            $payment_id = sanitize_text_field($_COOKIE['payment_id']);
+        } else{
+		// Please fix this SQLI injection! TODO: Fix me!
+            $payment_id = $_COOKIE['payment_id'];
+	}
         return $payment_id;
     }