diff options
| author | Marc Alexander <admin@m-a-styles.de> | 2017-07-22 17:26:41 +0200 |
|---|---|---|
| committer | Marc Alexander <admin@m-a-styles.de> | 2017-07-22 17:38:04 +0200 |
| commit | 882a3c383103802c491404032c5d267e4f5271a0 (patch) | |
| tree | 75267473a962e822fb7c4daf0d98e2b799782ea2 /phpBB/includes/functions_convert.php | |
| parent | fa3bdedf7bebd64336daaeff7c41b842fa098cf9 (diff) | |
| download | forums-882a3c383103802c491404032c5d267e4f5271a0.tar forums-882a3c383103802c491404032c5d267e4f5271a0.tar.gz forums-882a3c383103802c491404032c5d267e4f5271a0.tar.bz2 forums-882a3c383103802c491404032c5d267e4f5271a0.tar.xz forums-882a3c383103802c491404032c5d267e4f5271a0.zip | |
[ticket/security/211] Make sure website URL only uses http & https schemes
SECURITY-211
Diffstat (limited to 'phpBB/includes/functions_convert.php')
| -rw-r--r-- | phpBB/includes/functions_convert.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/phpBB/includes/functions_convert.php b/phpBB/includes/functions_convert.php index da4820134d..ba354d39ef 100644 --- a/phpBB/includes/functions_convert.php +++ b/phpBB/includes/functions_convert.php @@ -249,7 +249,7 @@ function validate_website($url) { return ''; } - else if (!preg_match('#^[a-z0-9]+://#i', $url) && strlen($url) > 0) + else if (!preg_match('#^http[s]?://#i', $url) && strlen($url) > 0) { return 'http://' . $url; } |