Changeset 319 in subversion for trunk/roundcubemail/program/steps/error.inc


Ignore:
Timestamp:
Aug 16, 2006 4:06:31 AM (7 years ago)
Author:
thomasb
Message:

Fixed some XSS and SQL injection issues

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/roundcubemail/program/steps/error.inc

    r50 r319  
    5454  { 
    5555  $__error_title = "REQUEST FAILED/FILE NOT FOUND"; 
    56   $request_url = $_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; 
     56  $request_url = htmlentities($_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']); 
    5757  $__error_text  = <<<EOF 
    5858The requested page was not found!<br /> 
Note: See TracChangeset for help on using the changeset viewer.