From c86ae74710a1f5469ef104f2fd9667c80c19f25d Mon Sep 17 00:00:00 2001 From: nikrou Date: Thu, 19 Mar 2009 19:29:03 +0000 Subject: merge r3184 backport from trunk to branch 2.0 bug 933 fixed : quick fix to prevent html injection git-svn-id: http://piwigo.org/svn/branches/2.0@3214 68402e56-0260-453c-a942-63ccdbb3a9ee --- register.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'register.php') diff --git a/register.php b/register.php index 7a9304183..ca00bccfc 100644 --- a/register.php +++ b/register.php @@ -46,7 +46,7 @@ if (isset($_POST['submit'])) } $errors = - register_user($_POST['login'], + register_user(htmlspecialchars($_POST['login'],ENT_COMPAT,'utf-8'), $_POST['password'], $_POST['mail_address'], true, -- cgit v1.2.3