Rooba
/
boinc
mirror of https://github.com/BOINC/boinc.git
1
0
Fork 0
Code Issues 1 Packages Projects Releases Wiki Activity

fix XSS

This commit is contained in:
David Anderson 2024-12-21 14:55:49 -08:00 committed by root
parent 6f5fc348d4
commit 99de7f66f4
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
html/user/job_file.php
View File

@ -291,7 +291,7 @@ xml_header();
$req = $_POST['request']; $req = $_POST['request'];
$r = simplexml_load_string($req); $r = simplexml_load_string($req);
if (!$r) { if (!$r) {
xml_error(-1, "can't parse request message: $req", __FILE__, __LINE__); xml_error(-1, "can't parse request message: ".htmlspecialchars($req), __FILE__, __LINE__);
} }
switch($r->getName()) { switch($r->getName()) {