bug fix #933 : quick fix to prevent html injection

git-svn-id: http://piwigo.org/svn/trunk@3184 68402e56-0260-453c-a942-63ccdbb3a9ee
2026-06-02 04:15:05 +02:00 · 2009-03-08 12:34:32 +00:00
parent 1cfe916db2
commit 10e179f482
1 changed files with 1 additions and 1 deletions
@@ -46,7 +46,7 @@ if (isset($_POST['submit']))
  }

  $errors =
-      register_user($_POST['login'],
+      register_user(htmlspecialchars($_POST['login'],ENT_COMPAT,'utf-8'),
                    $_POST['password'],
                    $_POST['mail_address'],
                    true,