We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
hi when is see code i found XSS Vulnerabilitie in ajax_post.php https://github.com/httpdss/collectd-web/blob/master/media/jqtouch/demos/main/ajax_post.php 1 <?php .... 5 if ($_POST["zip"]) { 6 $title = "Zip " . $_POST['zip']; 7 } else { 8 $title = $_POST['movie']; .... 29
in line 5 have VULNERABILITY in zip POST method we must control user input like ENT_QUOTES , htmlspecialchars
but i think it is not necessary and web can remove or suggestion to remove when install it on server thanks to support
The text was updated successfully, but these errors were encountered:
No branches or pull requests
hi
when is see code i found XSS Vulnerabilitie in ajax_post.php
https://github.com/httpdss/collectd-web/blob/master/media/jqtouch/demos/main/ajax_post.php
1 <?php
....
5 if ($_POST["zip"]) {
6 $title = "Zip " . $_POST['zip'];
7 } else {
8 $title = $_POST['movie'];
....
29
......
whiteButton">Submit
in line 5 have VULNERABILITY in zip POST method
we must control user input like ENT_QUOTES , htmlspecialchars
but i think it is not necessary and web can remove or suggestion to remove when install it on server
thanks to support
The text was updated successfully, but these errors were encountered: