Nemcio/Batflat
1
0
Fork 0
mirror of https://github.com/sruupl/batflat.git synced 2026-02-25 20:40:44 +01:00
Code Issues Packages Projects Releases Activity

Fix reflective XSS

Browse Source
This commit is contained in:
timstoffel
2019-06-17 18:15:58 +02:00
parent acd661d7f1
commit 32f99b1214
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
inc/modules/searchbox/Site.php
View File

@@ -34,6 +34,8 @@
public function getSearch($phrase, $index = 1)
{
$phrase = urldecode($phrase);
$phrase = strip_tags ($phrase);
$phrase = htmlentities ($phrase);
$searchTemplate = 'search.html';
$phraseMinLength = 3;