arriej/TSN-Ranksystem
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #465 from JVMerkle/master

Browse Source 
Fix reflected XSS in list_rankup.php
This commit is contained in:
Newcomer1989
2018-04-05 20:40:14 +02:00
committed by GitHub
parent 2887620026 681cb5dfc6
commit b2f8fc6b02
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
stats/list_rankup.php
View File

@@ -29,13 +29,13 @@ if(!isset($_SESSION[$rspathhex.'tsuid'])) {
} }
if(isset($_POST['username'])) { if(isset($_POST['username'])) {
$_GET["search"] = strip_tags(htmlspecialchars($_POST['usersuche']));
$_GET["seite"] = 1; $_GET["seite"] = 1;
$_GET["search"] = $_POST['usersuche'];
} }
$filter=''; $filter='';
$searchstring=''; $searchstring='';
if(isset($_GET["search"]) && $_GET["search"] != '') { if(isset($_GET["search"]) && $_GET["search"] != '') {
$getstring = $_GET['search']; $getstring = htmlspecialchars($_GET['search']);
} }
if(isset($getstring) && strstr($getstring, 'filter:excepted:')) { if(isset($getstring) && strstr($getstring, 'filter:excepted:')) {
if(str_replace('filter:excepted:','',$getstring)!='') { if(str_replace('filter:excepted:','',$getstring)!='') {