Menu
▾
▴
[Phpbb-checkins] CVS: phpBB2/includes usercp_email.php,1.5,1.6
|
From: Paul S. O. <ps...@us...> - 2002-03-22 19:32:41
|
Update of /cvsroot/phpbb/phpBB2/includes
In directory usw-pr-cvs1:/tmp/cvs-serv23548/includes
Modified Files:
usercp_email.php
Log Message:
Minor change ... don't strip_tags ... I don't think this is a security issue but it could use checking ... everyone be aware of my being unsure before using this!
Index: usercp_email.php
===================================================================
RCS file: /cvsroot/phpbb/phpBB2/includes/usercp_email.php,v
retrieving revision 1.5
retrieving revision 1.6
diff -C2 -r1.5 -r1.6
*** usercp_email.php 19 Mar 2002 21:54:47 -0000 1.5
--- usercp_email.php 22 Mar 2002 19:32:35 -0000 1.6
***************
*** 67,71 ****
if ( !empty($HTTP_POST_VARS['subject']) )
{
! $subject = trim(strip_tags(stripslashes($HTTP_POST_VARS['subject'])));
}
else
--- 67,71 ----
if ( !empty($HTTP_POST_VARS['subject']) )
{
! $subject = trim(stripslashes($HTTP_POST_VARS['subject']));
}
else
***************
*** 77,81 ****
if ( !empty($HTTP_POST_VARS['message']) )
{
! $message = trim(strip_tags(stripslashes($HTTP_POST_VARS['message'])));
}
else
--- 77,81 ----
if ( !empty($HTTP_POST_VARS['message']) )
{
! $message = trim(stripslashes($HTTP_POST_VARS['message']));
}
else
|
