[Fusionforge-commits] r10404 - trunk/src/www/account

Alain Peyrat aljeux at libremir.placard.fr.eu.org
Thu Sep 2 22:41:38 CEST 2010


Author: aljeux
Date: 2010-09-02 22:41:37 +0200 (Thu, 02 Sep 2010)
New Revision: 10404

Modified:
   trunk/src/www/account/index.php
Log:
Protect feedback string

Modified: trunk/src/www/account/index.php
===================================================================
--- trunk/src/www/account/index.php	2010-09-02 20:05:27 UTC (rev 10403)
+++ trunk/src/www/account/index.php	2010-09-02 20:41:37 UTC (rev 10404)
@@ -25,7 +25,7 @@
 require_once $gfcommon.'include/pre.php';
 require_once $gfcommon.'include/timezones.php';
 
-$feedback = getStringFromRequest('feedback');
+$feedback = htmlspecialchars(getStringFromRequest('feedback'));
 
 session_require_login () ;
 




More information about the Fusionforge-commits mailing list