Fix XSS vulnerability

Signed-off-by: VirtualTam <virtualtam@flibidi.net>
This commit is contained in:
VirtualTam 2018-01-04 15:53:48 +01:00
parent ecccb14e2a
commit 5ec90c7155

View file

@ -431,7 +431,7 @@ if (isset($_POST['login']))
else
{
ban_loginFailed($conf);
$redir = '&username='. $_POST['login'];
$redir = '&username='. urlencode($_POST['login']);
if (isset($_GET['post'])) {
$redir .= '&post=' . urlencode($_GET['post']);
foreach (array('description', 'source', 'title', 'tags') as $param) {