mirror of
https://github.com/e107inc/e107.git
synced 2025-08-02 20:57:26 +02:00
XSS fix
This commit is contained in:
@@ -1380,7 +1380,7 @@ class validatorClass
|
|||||||
{
|
{
|
||||||
$vars['failed'][$f] = LAN_VALIDATE_191;
|
$vars['failed'][$f] = LAN_VALIDATE_191;
|
||||||
}
|
}
|
||||||
$curLine = str_replace('%v', htmlentities($vars['failed'][$f]),$curLine);
|
$curLine = str_replace('%v', filter_var($vars['failed'][$f], FILTER_SANITIZE_SPECIAL_CHARS), $curLine);
|
||||||
$curLine = str_replace('%f', $f, $curLine);
|
$curLine = str_replace('%f', $f, $curLine);
|
||||||
if ($checkNice & isset($niceNames[$f]['niceName']))
|
if ($checkNice & isset($niceNames[$f]['niceName']))
|
||||||
{
|
{
|
||||||
|
Reference in New Issue
Block a user