fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-01-07 10:41:40 +09:00
Code Issues Projects Releases Packages Wiki Activity

xss defense

Browse source 
git-svn-id: http://xe-core.googlecode.com/svn/trunk@10220 201d5d3c-b55e-5fd7-737f-ddc643e51545
This commit is contained in:
ovclas 2012-02-27 10:18:15 +00:00
parent 90c18a8bb8
commit 9be2ea84b4
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
modules/file/file.controller.php
View file

@ -512,6 +512,9 @@
$args->member_srl = $member_srl;
$args->sid = md5(rand(rand(1111111,4444444),rand(4444445,9999999)));
$security = new Security($args->source_filename);
$args->source_filename = $security->encodeHTML();
$output = executeQuery('file.insertFile', $args);
if(!$output->toBool()) return $output;
// Call a trigger (after)