fix some xss vulnerabilities - Githubissues

ActionRetro / 68k-news

Source for the 68k.news site

GNU General Public License v3.0

92 stars 18 forks source link

fix some xss vulnerabilities #7

Open dneustadt opened 3 years ago

dneustadt commented 3 years ago

Hi!

This merge request is related to https://github.com/ActionRetro/FrogFind/pull/6 and fixes similar XSS vulnerabilities with unescaped query parameters.

Proof: http://68k.news/index.php?section=nation&loc=%3Cinput+type%3D%22password%22+placeholder%3D%22password%22%3E