Open splitbrain opened 8 years ago
Please see http://php-grinder.com/vulns/view/1193443 - $_REQUEST['idx'] is output unescaped (except for trimming trailing colons). It should be escaped by hsc().
hsc()
Thanks, I will have a look at it.
Please see http://php-grinder.com/vulns/view/1193443 - $_REQUEST['idx'] is output unescaped (except for trimming trailing colons). It should be escaped by
hsc()
.