ChangeSet ID: 25822 CVSROOT: /opt/cvs-commit Module name: appdb Changes by: wineowner(a)winehq.org 2006/06/19 10:40:54 Modified files: include : util.php Log message: Chris Morgan <cmorgan(a)alum.wpi.edu> Disable addslashes() in makeSafe() until more finely grained filtering can be implemented Patch: http://cvs.winehq.org/patch.py?id=25822 Old revision New revision Changes Path 1.53 1.54 +2 -1 appdb/include/util.php Index: appdb/include/util.php diff -u -p appdb/include/util.php:1.53 appdb/include/util.php:1.54 --- appdb/include/util.php:1.53 19 Jun 2006 15:40:54 -0000 +++ appdb/include/util.php 19 Jun 2006 15:40:54 -0000 @@ -2,7 +2,8 @@ function makeSafe($var) { - $var = trim(addslashes($var)); +/* Disable addslashes() until we can use more finely grained filtering on user input */ +/* $var = trim(addslashes($var)); */ return $var; }