diff options
| author | Andreas Fischer <bantu@phpbb.com> | 2015-01-20 23:14:38 +0100 |
|---|---|---|
| committer | Andreas Fischer <bantu@phpbb.com> | 2015-01-20 23:14:38 +0100 |
| commit | d17904884ea27905d85c8cdc395821ade7079fa2 (patch) | |
| tree | e9fafeb9f22a2c01c4903f99d1552d8cd0e66583 /phpBB | |
| parent | a8027c542f267f8d04db89cc6cf54999cb1b53c1 (diff) | |
| parent | 92b5222295d6d1a8f49fe688a822922f8372b7d2 (diff) | |
| download | forums-d17904884ea27905d85c8cdc395821ade7079fa2.tar forums-d17904884ea27905d85c8cdc395821ade7079fa2.tar.gz forums-d17904884ea27905d85c8cdc395821ade7079fa2.tar.bz2 forums-d17904884ea27905d85c8cdc395821ade7079fa2.tar.xz forums-d17904884ea27905d85c8cdc395821ade7079fa2.zip | |
Merge pull request #3312 from bantu/ticket/13527
[ticket/13527] Escape information received from version server
* bantu/ticket/13527:
[ticket/13527] Apply htmlspecialchars() to data from version server.
[ticket/13527] Remove two unused variables.
Diffstat (limited to 'phpBB')
| -rw-r--r-- | phpBB/includes/acp/acp_update.php | 5 |
1 files changed, 1 insertions, 4 deletions
diff --git a/phpBB/includes/acp/acp_update.php b/phpBB/includes/acp/acp_update.php index 5d3e9abcea..87d5c51b56 100644 --- a/phpBB/includes/acp/acp_update.php +++ b/phpBB/includes/acp/acp_update.php @@ -34,10 +34,7 @@ class acp_update $this->page_title = 'ACP_VERSION_CHECK'; // Get current and latest version - $errstr = ''; - $errno = 0; - - $info = obtain_latest_version_info(request_var('versioncheck_force', false)); + $info = htmlspecialchars(obtain_latest_version_info(request_var('versioncheck_force', false))); if (empty($info)) { |