Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Sanitizing user input #5

Open
wants to merge 1 commit into
base: master
from

Conversation

Projects
None yet
1 participant
@birep
Copy link

commented May 29, 2019

While it would be nice if we could trust people not to include example files on live servers, a google search will reveal many people are serving RelativePath.Example1.php, including anyone running a here-unnamed CMS which includes this file in a subdirectory of the webroot.

The proposed changes simply escape the user input, closing an xss vulnerability.

@birep birep force-pushed the birep:master branch from 6001a7a to 13273e0 Jun 2, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.