Skip to content
Permalink
Browse files
Message subject not properly checked against xss #1120
  • Loading branch information
Fasse committed Oct 20, 2021
1 parent 01a83d4 commit 246044459e029a6613bfced6cc1d715de6d808a7
Showing with 1 addition and 1 deletion.
  1. +1 −1 adm_program/modules/messages/messages_write.php
@@ -26,7 +26,7 @@
// Initialize and check the parameters
$getMsgType = admFuncVariableIsValid($_GET, 'msg_type', 'string');
$getUserId = admFuncVariableIsValid($_GET, 'usr_id', 'int');
$getSubject = admFuncVariableIsValid($_GET, 'subject', 'html');
$getSubject = admFuncVariableIsValid($_GET, 'subject', 'string');
$getMsgId = admFuncVariableIsValid($_GET, 'msg_id', 'int');
$getRoleId = admFuncVariableIsValid($_GET, 'rol_id', 'int');
$getCarbonCopy = admFuncVariableIsValid($_GET, 'carbon_copy', 'bool', array('defaultValue' => false));

0 comments on commit 2460444

Please sign in to comment.