Rooba
/
boinc
mirror of https://github.com/BOINC/boinc.git
1
0
Fork 0
Code Issues 1 Packages Projects Releases Wiki Activity

fix XSS

This commit is contained in:
David Anderson 2024-12-21 14:55:49 -08:00
parent 443889e7bc
commit c08cd58443
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
html/user/job_file.php
View File

@ -299,7 +299,7 @@ xml_header();
$req = $_POST['request'];
$r = simplexml_load_string($req);
if (!$r) {
xml_error(-1, "can't parse request message: $req", __FILE__, __LINE__);
xml_error(-1, "can't parse request message: ".htmlspecialchars($req), __FILE__, __LINE__);
}
switch($r->getName()) {