Permalink
Browse files

removed XSS hole caused by "urldecode"

  • Loading branch information...
1 parent d27162c commit 7fc7e9645fed7b137e3f7f6b2a3295f3ee7e2048 gbateson committed Sep 20, 2005
Showing with 0 additions and 3 deletions.
  1. +0 −3 mod/hotpot/show.php
View
3 mod/hotpot/show.php
@@ -18,9 +18,6 @@
error("You are not allowed to view this page!");
}
- // decode the reference (not usually necessary)
- $params->reference = urldecode($params->reference);
-
if (isadmin()) {
$params->location = optional_param('location', HOTPOT_LOCATION_COURSEFILES);
} else {

0 comments on commit 7fc7e96

Please sign in to comment.