bashclub/piler
1
0
Fork 0
mirror of https://bitbucket.org/jsuto/piler.git synced 2025-06-12 23:17:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

fixed an xss issue in the gui

Browse Source
This commit is contained in:
SJ
2014-08-11 10:40:18 +02:00
parent eb334317ca
commit f0e81b60ff
3 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
webui/system/misc.php
View File

@ -27,6 +27,8 @@ function AUDIT($action = 0, $email = '', $ipaddr = '', $id = 0, $description = '
$db = Registry::get('db');
$description = htmlspecialchars($description);
$query = $db->query("INSERT INTO " . TABLE_AUDIT . " (ts, email, domain, action, ipaddr, meta_id, description) VALUES(?,?,?,?,?,?,?)", array(time(), $email, $a[1], $action, $ipaddr, $id, $description));
return $db->countAffected();