malhuda/as-stats-gui
1
0
Fork 0
mirror of https://github.com/nidebr/as-stats-gui.git synced 2025-02-20 11:23:18 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #24 from bib0x/fix-unencoded-user-inputs

Browse Source 
encode unstrusted user inputs on search field from history
This commit is contained in:
nidebr 2023-05-10 16:40:05 +02:00 committed by GitHub
commit d01f979c6c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
history.php
View File

@ -93,7 +93,7 @@ if ( isset($_GET['as']) ) {
<div class="box-body">
<form class="navbar-form navbar-left" role="search">
<div class="input-group">
<input type="text" class="form-control menu-input" name="as" placeholder="Search AS" value="<?php echo $val_searchas; ?>">
<input type="text" class="form-control menu-input" name="as" placeholder="Search AS" value="<?php echo htmlspecialchars($val_searchas); ?>">
<span class="input-group-btn">
<button type="submit" class="btn btn-flat button-input"><i class="fa fa-search"></i></button>
</span>