Beanz/flatpress
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

avoid rather nasty potential XSS vulnerability

Browse Source
This commit is contained in:
real_nowhereman 2010-09-05 13:14:51 +00:00
parent 9b5afb0f7e
commit bea964e517
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
comments.php
View File

@ -97,8 +97,8 @@
$name = $user['userid']; $name = $user['userid'];
} else { } else {
$name = trim(stripslashes(@$_POST['name'])); $name = trim(htmlspecialchars(@$_POST['name']));
$email = isset($_POST['email'])? trim($_POST['email']) : null; $email = isset($_POST['email'])? trim(htmlspecialchars($_POST['email'])) : null;
$url = isset($_POST['url'])? trim(stripslashes(htmlspecialchars($_POST['url']))) : null; $url = isset($_POST['url'])? trim(stripslashes(htmlspecialchars($_POST['url']))) : null;
/* /*