ChangeSet ID: 25822 CVSROOT: /opt/cvs-commit Module name: appdb Changes by: wineowner@winehq.org 2006/06/19 10:40:54
Modified files: include : util.php
Log message: Chris Morgan cmorgan@alum.wpi.edu Disable addslashes() in makeSafe() until more finely grained filtering can be implemented
Patch: http://cvs.winehq.org/patch.py?id=25822
Old revision New revision Changes Path 1.53 1.54 +2 -1 appdb/include/util.php
Index: appdb/include/util.php diff -u -p appdb/include/util.php:1.53 appdb/include/util.php:1.54 --- appdb/include/util.php:1.53 19 Jun 2006 15:40:54 -0000 +++ appdb/include/util.php 19 Jun 2006 15:40:54 -0000 @@ -2,7 +2,8 @@
function makeSafe($var) { - $var = trim(addslashes($var)); +/* Disable addslashes() until we can use more finely grained filtering on user input */ +/* $var = trim(addslashes($var)); */ return $var; }