Project

General

Profile

Actions
Copy link

Bug #2388

closed

Backend: more htmlspecialchars missing

Added by beat about 13 years ago. Updated about 13 years ago.

Status:
Closed
Priority:
Normal
Assignee:
beat
Target version:
2.0
Start date:
09 March 2011
Due date:
% Done:

100%

Estimated time:

Description

admin.cbgroupjive.php function showConfig : missing htmlspecialchars for input values everywhere (around 30 places):

e.g.

        $input['general_title']                =    '<input type="text" id="general_title" name="general_title" value="' . $plugin->params->get( 'general_title', $plugin->name ) . '" class="inputbox" size="25" />';

should be:

        $input['general_title']                =    '<input type="text" id="general_title" name="general_title" value="' . htmlspecialchars( $plugin->params->get( 'general_title', $plugin->name ) ) . '" class="inputbox" size="25" />';
Actions
Copy link
 #1

Updated by krileon about 13 years ago

  • Status changed from New to Resolved
  • Assignee changed from krileon to beat
  • % Done changed from 0 to 100

Fixed in r1611

Actions
Copy link
 #2

Updated by krileon about 13 years ago

  • Status changed from Resolved to Closed
Actions
Copy link

Also available in: Atom PDF