Skip to content

Commit

Permalink
Do not provide fallback to cookie for font size
Browse files Browse the repository at this point in the history 
* This should be already handled by Config class
* Injecting cookie value to CSS could be security risk

Signed-off-by: Michal Čihař <michal@cihar.com>
  • Loading branch information
@nijel
nijel committed Dec 8, 2016
1 parent 00607e6 commit 8a08162
Showing 1 changed file with 0 additions and 3 deletions.
3 changes: 0 additions & 3 deletions libraries/Theme.class.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -490,9 +490,6 @@ function getFontSize()
if (!is_null($fs)) {
return $fs;
}
if (isset($_COOKIE['pma_fontsize'])) {
return htmlspecialchars($_COOKIE['pma_fontsize']);
}
return '82%';
}

Expand Down

0 comments on commit 8a08162

Please sign in to comment.