Révision 2b641a08
Ajouté par Renato Botelho il y a presque 10 ans
usr/local/www/widgets/widgets/services_status.widget.php | ||
---|---|---|
41 | 41 |
$services = get_services(); |
42 | 42 |
|
43 | 43 |
if(isset($_POST['servicestatusfilter'])) { |
44 |
$config['widgets']['servicestatusfilter'] = $_POST['servicestatusfilter'];
|
|
44 |
$config['widgets']['servicestatusfilter'] = htmlspecialchars($_POST['servicestatusfilter'], ENT_QUOTES | ENT_HTML401);
|
|
45 | 45 |
write_config("Saved Service Status Filter via Dashboard"); |
46 | 46 |
header("Location: ../../index.php"); |
47 | 47 |
} |
Formats disponibles : Unified diff
Protect servicestatusfilter parameter with htmlspecialchars()