[core] Fixed passive XSS vulnerability
Reference: https://www.openbugbounty.org/reports/1140367/
This commit is contained in:
parent
164b407f28
commit
93cdf5e342
1 changed files with 1 additions and 1 deletions
|
@ -129,7 +129,7 @@ EOD;
|
|||
* @return string The searchbar
|
||||
*/
|
||||
private static function getSearchbar() {
|
||||
$query = filter_input(INPUT_GET, 'q');
|
||||
$query = filter_input(INPUT_GET, 'q', FILTER_SANITIZE_SPECIAL_CHARS);
|
||||
|
||||
return <<<EOD
|
||||
<section class="searchbar">
|
||||
|
|
Loading…
Reference in a new issue