aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authornikrou <nikrou@piwigo.org>2010-04-21 20:17:07 +0000
committernikrou <nikrou@piwigo.org>2010-04-21 20:17:07 +0000
commit3402ea7bf3347520f9bb8ba536328954ea9902b3 (patch)
treeb07d165bc392a7f6145349110c3aac4d6463bfbf
parenta734c052c24a74346647ebcfc1009e1d5bec1821 (diff)
Bug 1621 fixed : CSS vulnerability in register.php
login and mail_address fields must be filtered with htmlspecialchars. merge from trunk git-svn-id: http://piwigo.org/svn/branches/2.0@5937 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
-rw-r--r--register.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/register.php b/register.php
index ca00bccfc..3c500ec31 100644
--- a/register.php
+++ b/register.php
@@ -76,8 +76,8 @@ $template->assign(array(
'U_HOME' => make_index_url(),
'F_ACTION' => 'register.php',
- 'F_LOGIN' => $login,
- 'F_EMAIL' => $email
+ 'F_LOGIN' => htmlspecialchars($login, ENT_QUOTES, 'utf-8'),
+ 'F_EMAIL' => htmlspecialchars($email, ENT_QUOTES, 'utf-8')
));
//-------------------------------------------------------------- errors display