diff options
author | nikrou <nikrou@piwigo.org> | 2009-10-28 20:39:00 +0000 |
---|---|---|
committer | nikrou <nikrou@piwigo.org> | 2009-10-28 20:39:00 +0000 |
commit | 2696a1a75969ca48fb4fe9df3416e2cd692c8d97 (patch) | |
tree | 855dd2b571152c18a8f435d364b3856098b9164a /upload.php | |
parent | e0e12306cc67fdcf59d7544c2c59f6c6a333cbd3 (diff) |
merge from trunk
bug 1220 : fix XSS vulnerability.
filter on since parameter (is_numeric)
use only htmlspecialchars to filter vars to display
revert rev:3600 add left join on users table
Todo : use only left join on users table when a search by author is made
git-svn-id: http://piwigo.org/svn/branches/2.0@4140 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'upload.php')
0 files changed, 0 insertions, 0 deletions