Project

General

Profile

« Previous | Next » 

Revision 1310

Added by Dietmar over 14 years ago

Ticket 963 Minor XSS issue in admin login
update jquery-ui-min.js from 1.7.2 to 1.8.0
Fixed typo in the english language file

View differences:

class.login.php
61 61
			$username_fieldname = 'username';
62 62
			$password_fieldname = 'password';
63 63
		}
64
		$this->username = $this->add_slashes(strtolower($this->get_post($username_fieldname)));
64

  
65
		$this->username = htmlspecialchars (strtolower($this->get_post($username_fieldname)), ENT_QUOTES);
65 66
		$this->password = $this->get_post($password_fieldname);
66 67
		// Figure out if the "remember me" option has been checked
67 68
		if($this->get_post('remember') == 'true') {
......
340 341
			return false;
341 342
		}
342 343
	}
343
	
344

  
344 345
	// Display the login screen
345 346
	function display_login() {
346 347
		// Get language vars

Also available in: Unified diff