Skip to content
Permalink
Browse files Browse the repository at this point in the history
xss vulnerability fixed
  • Loading branch information
schiessle committed Jun 5, 2012
1 parent e817504 commit 44260a5
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions apps/calendar/lib/object.php
Expand Up @@ -600,8 +600,8 @@ public static function createVCalendarFromRequest($request)

public static function updateVCalendarFromRequest($request, $vcalendar)
{
$title = $request["title"];
$location = $request["location"];
$title = strip_tags($request["title"]);
$location = strip_tags($request["location"]);
$categories = $request["categories"];
$allday = isset($request["allday"]);
$from = $request["from"];
Expand All @@ -611,7 +611,7 @@ public static function updateVCalendarFromRequest($request, $vcalendar)
$totime = $request['totime'];
}
$vevent = $vcalendar->VEVENT;
$description = $request["description"];
$description = strip_tags($request["description"]);
$repeat = $request["repeat"];
if($repeat != 'doesnotrepeat'){
$rrule = '';
Expand Down

0 comments on commit 44260a5

Please sign in to comment.