Commit: 8d01df7fa2b434c1d5b3582ca6d8eed3b3d3355b Author: Johannes Schlüter <johan...@schlueters.de> Wed, 7 Aug 2013 19:43:58 +0200 Parents: 7406b12002204055c9a06856d619c9123e77f394 Branches: master
Link: http://git.php.net/?p=web/bugs.git;a=commitdiff;h=8d01df7fa2b434c1d5b3582ca6d8eed3b3d3355b Log: The version might be unsafe Changed paths: M www/stats.php Diff: diff --git a/www/stats.php b/www/stats.php index ea3cb8a..97daa6b 100644 --- a/www/stats.php +++ b/www/stats.php @@ -166,7 +166,8 @@ while ($row = $result->fetchRow(MDB2_FETCHMODE_ASSOC)) { echo "<b>{$row[d]}:</b><br>\n<table>\n"; $last_date = $row['d']; } - echo "<tr><td class='bug_head'>{$row[formatted_version]}</td><td class='bug_bg1'>{$row[quant]}</td></tr>\n"; + $version = htmlentities($row[formatted_version]); + echo "<tr><td class='bug_head'>{$version}</td><td class='bug_bg1'>{$row[quant]}</td></tr>\n"; } if ($last_date) { echo "</table>\n\n"; -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
