Context Navigation

login_form.ihtml @ 185

Last change on this file since 185 was 185, checked in by scdev, 18 years ago
Q - added oTxt() around all printed PHP_SELFs to avoid XSS attack. See: http://blog.phpdoc.info/archives/13-XSS-Woes.html
File size: 779 bytes

Line
1	<form method="post" action="<?php echo oTxt($_SERVER['PHP_SELF']); ?>">
2	<?php $app->printHiddenSession() ?>
3	<table>
4	<tr>
5	<td class="sc-right"><label for="username"><?php echo _("Username"); ?></label></td>
6	<td>
7	<input type="text" class="sc-small" size="20" name="username" value="<?php echo oTxt($frm['username']); ?>" />
8	</td>
9	</tr>
10	<tr>
11	<td class="sc-right"><label for="password"><?php echo _("Password"); ?></label></td>
12	<td>
13	<input type="password" class="sc-small" size="20" name="password" value="<?php echo oTxt($frm['password']); ?>" />
14	</td>
15	</tr>
16	<tr>
17	<td> </td>
18	<td><input type="submit" value="<?php echo _("Login"); ?>" /></td>
19	</tr>
20	</table>
21	</form>

Note: See TracBrowser for help on using the repository browser.