maketank/Froxlor
2
0
Fork 0
Code Pull Requests Releases Activity

Added new database-class based on PHP-PDO to use prepared-statements; implemented new Database-class in admin_index (more to follow, old DB class still in use everywhere else); secure standard_error back-link output

Browse Source 
Signed-off-by: Michael Kaufmann (d00p) <d00p@froxlor.org>
This commit is contained in:
Michael Kaufmann (d00p)
2013-10-29 08:22:17 +01:00
parent 2368267bb8
commit a14f04c25b
9 changed files with 339 additions and 128 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/functions/output/function.standard_error.php
View File

@@ -41,7 +41,7 @@ function standard_error($errors = '', $replacer = '')
$link = '';
if (isset($_SERVER['HTTP_REFERER']) && strpos($_SERVER['HTTP_REFERER'], $_SERVER['HTTP_HOST']) !== false) {
$link = '<a href="'.$_SERVER['HTTP_REFERER'].'">'.$lng['panel']['back'].'</a>';
$link = '<a href="'.htmlentities($_SERVER['HTTP_REFERER']).'">'.$lng['panel']['back'].'</a>';
}
$error = '';