diff options
author | justdave%syndicomm.com <> | 2001-08-25 02:32:24 +0200 |
---|---|---|
committer | justdave%syndicomm.com <> | 2001-08-25 02:32:24 +0200 |
commit | 549954949a402ba5bc84cfb83cda3d62a8e1a887 (patch) | |
tree | 64ac2ddb9c40844739db9ae9583cdbf41af9aa9b /new_comment.cgi | |
parent | 0fb6fdfab23fa6e82bce48af1b4872b0b5203425 (diff) | |
download | bugzilla-549954949a402ba5bc84cfb83cda3d62a8e1a887.tar.gz bugzilla-549954949a402ba5bc84cfb83cda3d62a8e1a887.tar.xz |
Fix for bug 95235: variables with untrusted content were being echoed back to the user in error messages. Those variables are now run through html_quote() first.
Patch by Gavin Shelley <gavins@iplbath.com>
r= justdave@syndicomm.com
Diffstat (limited to 'new_comment.cgi')
0 files changed, 0 insertions, 0 deletions