open-dsi
/
nextcloud-server
mirror of https://github.com/nextcloud/server
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Use sanitizeHTML instead of stripslashes + htmlspecialchars

Browse Source
remotes/origin/stable5
Lukas Reschke 12 years ago
parent 1c56539c01
commit 1b10032556
1 changed files with 1 additions and 1 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 2
      lib/helper.php

2
lib/helper.php
Unescape View File

@ -437,7 +437,7 @@ class OC_Helper {
public static function init_var($s, $d="") {
$r = $d;
if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s]))
$r = stripslashes(htmlspecialchars($_REQUEST[$s]));
$r = OC_Util::sanitizeHTML($_REQUEST[$s]);
return $r;
}

Write Preview
Loading…
Cancel
Save