1
0
Fork 0
mirror of https://github.com/sbrl/Pepperminty-Wiki.git synced 2024-12-22 13:45:02 +00:00

feature-watchlist: Fix Potential XSS in do GET parameter

This commit is contained in:
Starbeamrainbowlabs 2021-09-02 21:21:17 +01:00
parent 96546184dc
commit dfe76d1d9b
Signed by: sbrl
GPG key ID: 1BE5172E637709C2

View file

@ -130,7 +130,7 @@ register_module([
global $settings, $env, $pageindex;
// The thing we should do.
$do = $_GET["do"] ?? "null";
$do = slugify($_GET["do"] ?? "null");
// The location we should redirect to after doing it successfully, if anywhere
$returnto = empty($_GET["returnto"]) ? null : $_GET["returnto"];