diff options
author | nikrou <nikrou@piwigo.org> | 2009-10-28 20:34:29 +0000 |
---|---|---|
committer | nikrou <nikrou@piwigo.org> | 2009-10-28 20:34:29 +0000 |
commit | d7f6cbb5fddd1864d3110bd73e9a633bb9f09f13 (patch) | |
tree | 2ea6d69462584755e37b47778b6f87eb516411f5 /admin/profile.php | |
parent | 5c9929b62e3d4a8448249864a4b87062243f7b33 (diff) |
bug 1220 : fix XSS vulnerability.
filter on since parameter (is_numeric)
use only htmlspecialchars to filter vars to display
revert rev:3600 add left join on users table
Todo : use only left join on users table when a search by author is made
git-svn-id: http://piwigo.org/svn/trunk@4139 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions