Pass path parameter through htmlpecialchars()
This commit is contained in:
parent
f376043cf3
commit
a8c82ef955
|
@ -229,7 +229,7 @@ outputJavaScriptFileInline("javascript/base64.js");
|
|||
<?php if($_GET['action'] == "load"): ?>
|
||||
jQuery(window).load(
|
||||
function() {
|
||||
jQuery("#fbTarget").val("<?=$_GET['path'];?>");
|
||||
jQuery("#fbTarget").val("<?=htmlspecialchars($_GET['path']);?>");
|
||||
loadFile();
|
||||
}
|
||||
);
|
||||
|
|
Reference in New Issue