Closed GoogleCodeExporter closed 8 years ago
I simply removed that line (waiting explanations about its real use).
I'm also used to pass an urldecode() to filepaths I want TimThumb to be fed
with.
Original comment by gibbo...@gmail.com
on 26 Mar 2010 at 10:45
Attachments:
Hi - thanks for the pointer. I have now fixed this issue in the current
version. If
memory serves me correctly the htmlentities code was added to stop people from
being
able to inject script tags into image paths. I have now swapped to "strip_tags"
instead which should still stop this issue from occuring
Thanks
Original comment by BinaryMoon
on 26 Apr 2010 at 8:52
Original issue reported on code.google.com by
gibbo...@gmail.com
on 15 Mar 2010 at 4:51