Skip to content
Permalink
Browse files Browse the repository at this point in the history
Merge pull request from GHSA-cfr5-rqm5-9vhp
Fix/GHSA-cfr5-rqm5-9vhp - Possible XSS in queryads.php
  • Loading branch information
PromoFaux committed Jul 7, 2022
2 parents 803a42f + 5e46f5e commit b07372b
Showing 1 changed file with 2 additions and 3 deletions.
5 changes: 2 additions & 3 deletions scripts/pi-hole/php/queryads.php
Expand Up @@ -27,9 +27,8 @@ function echoEvent($datatext) {
{
// Is this a valid domain?
$url = idn_to_ascii($_GET["domain"]);
if(!validDomain($url))
{
echoEvent("$url is an invalid domain!");
if (!validDomain($url)) {
echoEvent(htmlentities($url)." is an invalid domain!");
die();
}
}
Expand Down

0 comments on commit b07372b

Please sign in to comment.