fix XSS vulnerability
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@460 b3834d28-1941-0410-a4f8-b48e95affb8f
This commit is contained in:
parent
066085535d
commit
55554bc0f1
1 changed files with 1 additions and 1 deletions
|
@ -49,7 +49,7 @@ function getSortOrder($override = NULL) {
|
|||
global $defaultOrderBy;
|
||||
|
||||
if (isset($_GET['sort'])) {
|
||||
return $_GET['sort'];
|
||||
return preg_replace('/[^a-z]/', '', $_GET['sort']);
|
||||
} else if (isset($override)) {
|
||||
return $override;
|
||||
} else {
|
||||
|
|
Loading…
Reference in a new issue