mirror/php-e107
1
0
Fork 0
mirror of https://github.com/e107inc/e107.git synced 2025-08-01 20:30:39 +02:00
Code Issues Releases Wiki Activity

XSS fix

Browse Source
This commit is contained in:
CaMer0n
2012-08-10 09:13:01 +00:00
parent 21d53a27b4
commit 35fe774435
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
e107_handlers/validator_class.php
View File

@@ -1380,7 +1380,7 @@ class validatorClass
{
$vars['failed'][$f] = LAN_VALIDATE_191;
}
$curLine = str_replace('%v', htmlentities($vars['failed'][$f]),$curLine);
$curLine = str_replace('%v', filter_var($vars['failed'][$f], FILTER_SANITIZE_SPECIAL_CHARS), $curLine);
$curLine = str_replace('%f', $f, $curLine);
if ($checkNice & isset($niceNames[$f]['niceName']))
{