claunia/qemudb
Archived
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix 2 cross site scripting problems.

Browse Source
This commit is contained in:
Marcus Meissner
2004-12-19 17:54:09 +00:00
committed by WineHQ
parent 8d8c98bc46
commit ddbd9ed0cc
2 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
account.php
View File

@@ -169,7 +169,7 @@ function cmd_send_passwd()
} }
else else
{ {
addmsg("Sorry, that username (".$_POST['ext_username'].") does not exist.", "red"); addmsg("Sorry, that username (". urlencode($_POST['ext_username']) .") does not exist.", "red");
} }
redirect(apidb_fullurl("account.php?cmd=login")); redirect(apidb_fullurl("account.php?cmd=login"));

2
search.php
View File

@@ -16,7 +16,7 @@ if(mysql_num_rows($result) == 0)
{ {
// do something // do something
echo html_frame_start("","98%"); echo html_frame_start("","98%");
echo "No matches found for ".$_REQUEST['q']."\n"; echo "No matches found for ". urlencode($_REQUEST['q']) . "\n";
echo html_frame_end(); echo html_frame_end();
} }
else else