Skip to content

Commit

Permalink
merge r18699 from branch 2.4 to trunk
Browse files Browse the repository at this point in the history 
bug 2774 fixed: better sanitize on username_or_email user input


git-svn-id: http://piwigo.org/svn/trunk@18700 68402e56-0260-453c-a942-63ccdbb3a9ee
  • Loading branch information
@plegall
plegall committed Oct 19, 2012
1 parent 248784f commit 548698e
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion password.php
View file
Expand Up @@ -326,7 +326,7 @@ function reset_password()

if (isset($_POST['username_or_email']))
{
$template->assign('username_or_email', stripslashes(strip_tags($_POST['username_or_email'])));
$template->assign('username_or_email', htmlspecialchars(stripslashes($_POST['username_or_email'])));
}
}

Expand Down

0 comments on commit 548698e

Please sign in to comment.