[xoops-svn] SF.net SVN: xoops-svn:[12089] XoopsCore/branches/2.5.x/2.5.7/htdocs/class/ xoopsfilteri

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Revision: 12089
          http://sourceforge.net/p/xoops/svn/12089
Author:   rgriffith
Date:     2013-09-23 14:04:50 +0000 (Mon, 23 Sep 2013)
Log Message:
-----------
Add missing control character check

Modified Paths:
--------------
    XoopsCore/branches/2.5.x/2.5.7/htdocs/class/xoopsfilterinput.php

Modified: XoopsCore/branches/2.5.x/2.5.7/htdocs/class/xoopsfilterinput.php
===================================================================

--- XoopsCore/branches/2.5.x/2.5.7/htdocs/class/xoopsfilterinput.php	2013-09-23 06:37:26 UTC (rev 12088)
+++ XoopsCore/branches/2.5.x/2.5.7/htdocs/class/xoopsfilterinput.php	2013-09-23 14:04:50 UTC (rev 12089)
@@ -216,8 +216,8 @@
                 ) {
                     $result='';
                 }
-                // do not allow quotes or tag brackets
-                if (!preg_match('#^[^"<>]+$#', $result)) {
+                // do not allow quotes, tag brackets or controls
+                if (!preg_match('#^[^"<>\x00-\x1F]+$#', $result)) {
                     $result='';
                 }
                 break;





[xoops-svn] SF.net SVN: xoops-svn:[12089] XoopsCore/branches/2.5.x/2.5.7/htdocs/class/ xoopsfilteri

The world's leading content management systems (CMS) written in PHP

[xoops-svn] SF.net SVN: xoops-svn:[12089] XoopsCore/branches/2.5.x/2.5.7/htdocs/class/ xoopsfilterinput.php