Skip to content
Snippets Groups Projects
Commit 32b1c7ad authored by Lukas Reschke's avatar Lukas Reschke
Browse files

Merge pull request #1589 from owncloud/use-sanitizeHTML 

Use sanitizeHTML instead of stripslashes + htmlspecialchars
parents 6f785e21 46103e62
No related branches found
No related tags found
No related merge requests found
Show whitespace changes
Inline Side-by-side
Showing
with 3 additions and 2 deletions
lib/helper.php
+ 3
2
View file @ 32b1c7ad
...@@ -436,8 +436,9 @@ class OC_Helper { ...@@ -436,8 +436,9 @@ class OC_Helper {
//FIXME: should also check for value validation (i.e. the email is an email). //FIXME: should also check for value validation (i.e. the email is an email).
public static function init_var($s, $d="") { public static function init_var($s, $d="") {
$r = $d; $r = $d;
if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s])) if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s])) {
$r = stripslashes(htmlspecialchars($_REQUEST[$s])); $r = OC_Util::sanitizeHTML($_REQUEST[$s]);
}
return $r; return $r;
} }
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment