[geeklog-hg] geeklog: sanitize topic (TWSL2013-001)
geeklog-cvs at lists.geeklog.net
geeklog-cvs at lists.geeklog.net
Sun Feb 17 07:58:38 EST 2013
changeset 8943:6c89d08563c6
url: http://project.geeklog.net/cgi-bin/hgwebdir.cgi/geeklog/rev/6c89d08563c6
user: Dirk Haun <dirk at haun-online.de>
date: Sun Feb 17 11:20:17 2013 +0100
description:
sanitize topic (TWSL2013-001)
diffstat:
public_html/admin/topic.php | 3 ++-
1 files changed, 2 insertions(+), 1 deletions(-)
diffs (13 lines):
diff -r bc167e6fe58a -r 6c89d08563c6 public_html/admin/topic.php
--- a/public_html/admin/topic.php Sun Feb 17 11:07:24 2013 +0100
+++ b/public_html/admin/topic.php Sun Feb 17 11:20:17 2013 +0100
@@ -452,7 +452,8 @@
if ($imageurl == '/images/topics/') {
$imageurl = '';
}
- $topic = DB_escapeString($topic);
+
+ $topic = DB_escapeString(strip_tags($topic));
$meta_description = DB_escapeString(strip_tags($meta_description));
$meta_keywords = DB_escapeString(strip_tags($meta_keywords));
More information about the geeklog-cvs
mailing list