Changeset 2031

Timestamp:

Jun 7, 2007, 8:52:40 PM (17 years ago)

Author:

rub

Message:

Resolved issue 0000702: Code Injection with picture comment

Merge BSF 2029:2030 into branch-1_7

Location:

branches/branch-1_7

Files:

• admin/comments.php (modified) (1 diff)
• comments.php (modified) (1 diff)
• include/common.inc.php (modified) (1 diff)
• include/picture_comment.inc.php (modified) (1 diff)

branches/branch-1_7/admin/comments.php

@@ -163 +163 @@
       'ID' => $row['id'],
       'TN_SRC' => $thumb,
-      'AUTHOR' => $row['author'],
+      'AUTHOR' => trigger_event('render_comment_author', $row['author']),
       'DATE' => format_date($row['date'],'mysql_datetime',true),
       'CONTENT' => trigger_event('render_comment_content',$row['content'])

branches/branch-1_7/comments.php

@@ -412 +412 @@
         'TN_SRC' => $thumbnail_src,
         'ALT' => $name,
-        'AUTHOR' => $author,
+        'AUTHOR' => trigger_event('render_comment_author', $author),
         'DATE'=>format_date($comment['date'],'mysql_datetime',true),
         'CONTENT'=>trigger_event('render_comment_content',$comment['content']),

branches/branch-1_7/include/common.inc.php

@@ -244 +244 @@
 add_event_handler('render_comment_content', 'htmlspecialchars');
 add_event_handler('render_comment_content', 'parse_comment_content');
+add_event_handler('render_comment_author', 'strip_tags');
 trigger_action('init');
 ?>

branches/branch-1_7/include/picture_comment.inc.php

@@ -137 +137 @@
         'comments.comment',
         array(
-          'COMMENT_AUTHOR' => empty($row['author'])
+          'COMMENT_AUTHOR' => trigger_event('render_comment_author', 
+            empty($row['author'])
             ? $lang['guest']
-            : $row['author'],
+            : $row['author']),
 
           'COMMENT_DATE' => format_date(