Ignore:
Timestamp:
Jan 4, 2007, 12:28:09 AM (17 years ago)
Author:
rub
Message:

Fixed: HTML vulnerability (Cross Site Scripting)

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/admin/user_list.php

    r1620 r1696  
    478478
    479479    'F_ADD_ACTION' => $base_url,
    480     'F_USERNAME' => @$_GET['username'],
     480    'F_USERNAME' => @htmlentities($_GET['username']),
    481481    'F_FILTER_ACTION' => PHPWG_ROOT_PATH.'admin.php'
    482482    ));
Note: See TracChangeset for help on using the changeset viewer.