chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Security issue: Adding Security::remove_XSS function

Browse Source
skala
Julio Montoya 15 years ago
parent 267dc40f2a
commit b4532555c8
1 changed files with 1 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      main/inc/lib/tracking.lib.php

2
main/inc/lib/tracking.lib.php
Unescape View File

@ -1443,7 +1443,7 @@ class TrackingCourseLog {
// the form elements for the $_GET parameters (because the form is passed through GET
foreach ($_GET as $key=>$value){
if ($key <> 'additional_profile_field') {
$return .= '<input type="hidden" name="'.$key.'" value="'.Security::remove_XSS($value).'" />';
$return .= '<input type="hidden" name="'.Security::remove_XSS($key).'" value="'.Security::remove_XSS($value).'" />';
}
}
// the submit button

Write Preview
Loading…
Cancel
Save