diff options
| -rw-r--r-- | application/controllers/welcome.php | 9 | ||||
| -rwxr-xr-x | system/core/Security.php | 2 |
2 files changed, 3 insertions, 8 deletions
diff --git a/application/controllers/welcome.php b/application/controllers/welcome.php index e4570974f..21bef43d9 100644 --- a/application/controllers/welcome.php +++ b/application/controllers/welcome.php @@ -7,10 +7,10 @@ class Welcome extends CI_Controller { * * Maps to the following URL * http://example.com/index.php/welcome - * - or - + * - or - * http://example.com/index.php/welcome/index * - or - - * Since this controller is set as the default controller in + * Since this controller is set as the default controller in * config/routes.php, it's displayed at http://example.com/ * * So any other public methods not prefixed with an underscore will @@ -21,11 +21,6 @@ class Welcome extends CI_Controller { { $this->load->view('welcome_message'); } - - public function test() - { - var_dump($this->security->xss_clean("<img src=\"a\" onerror='eval(atob(\"cHJvbXB0KDEpOw==\"))'")); - } } /* End of file welcome.php */ diff --git a/system/core/Security.php b/system/core/Security.php index a7db5a46b..b0d39b981 100755 --- a/system/core/Security.php +++ b/system/core/Security.php @@ -609,7 +609,7 @@ class CI_Security { if ($is_image === TRUE) { /* - * Adobe Photoshop puts XML metadata into JFIF images, + * Adobe Photoshop puts XML metadata into JFIF images, * including namespacing, so we have to allow this for images. */ unset($evil_attributes[array_search('xmlns', $evil_attributes)]); |