Permalink
Browse files

removed XSS hole caused by urldecode

  • Loading branch information...
1 parent ac04332 commit 6241666438d077cdd2e1fe22c15b91a7b185d31f gbateson committed Sep 20, 2005
Showing with 0 additions and 3 deletions.
  1. +0 −3 mod/hotpot/show.php
View
@@ -18,9 +18,6 @@
error("You are not allowed to view this page!");
}
- // decode the reference (not usually necessary)
- $params->reference = urldecode($params->reference);
-
if (isadmin()) {
$params->location = optional_param('location', HOTPOT_LOCATION_COURSEFILES);
} else {

0 comments on commit 6241666

Please sign in to comment.