Changeset 185 for branches/1.1dev/bin/module_maker/list_template.cli.php

Timestamp:

Jun 24, 2006 11:02:54 PM (18 years ago)

Author:

scdev

Message:

Q - added oTxt() around all printed PHP_SELFs to avoid XSS attack. See: ​http://blog.phpdoc.info/archives/13-XSS-Woes.html

File:

• branches/1.1dev/bin/module_maker/list_template.cli.php (modified) (1 diff)

branches/1.1dev/bin/module_maker/list_template.cli.php

@@ -104 +104 @@
 
 <\x3fphp include 'form_error_header.ihtml'; \x3f>
-<form action="<\x3fphp echo \$_SERVER['PHP_SELF']; \x3f>" method="post">
+<form action="<\x3fphp echo oTxt(\$_SERVER['PHP_SELF']); \x3f>" method="post">
 <\x3fphp printHiddenSession(false); \x3f>