From 4226ef6f206ce7a5d81b3f04b85d4b47937a0f0f Mon Sep 17 00:00:00 2001 From: Filip Komar Date: Fri, 10 Jan 2014 20:16:39 +0000 Subject: security improved for some pages with strip_tags of --- langs/diff.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'langs/diff.php') diff --git a/langs/diff.php b/langs/diff.php index ccc7f6416..117d38a9e 100644 --- a/langs/diff.php +++ b/langs/diff.php @@ -4,8 +4,8 @@ * against matching file in language 'l', if it exists. */ -$source_file = isset($_GET['s']) ? trim($_GET['s']) : null; -$target_lang = isset($_GET['l']) ? trim($_GET['l']) : null; +$source_file = isset($_GET['s']) ? strip_tags(trim($_GET['s'])) : null; +$target_lang = isset($_GET['l']) ? strip_tags(trim($_GET['l'])) : null; if (is_null($source_file) || is_null($target_lang)) { @@ -113,7 +113,7 @@ header('Content-Type: text/html;charset=utf-8'); - +

-- cgit v1.2.1