Fixing a XSS - vulnerability discovered by tomreyn

Signed-off-by: Florian Aders (EleRas) <eleras@froxlor.org>
2011-03-19 13:14:28 +01:00
parent 0f4695a43f
commit 5e0c641a02
3 changed files with 16 additions and 15 deletions
--- a/lib/functions/phphelpers/function.htmlentities_array.php
+++ b/lib/functions/phphelpers/function.htmlentities_array.php
@@ -29,7 +29,7 @@
 * @author Florian Lippert <flo@syscp.org>
 */

-function htmlentities_array($subject, $fields = '', $quote_style = ENT_COMPAT, $charset = 'ISO-8859-1')
+function htmlentities_array($subject, $fields = '', $quote_style = ENT_QUOTES, $charset = 'ISO-8859-1')
 {
 	if(is_array($subject))
 	{