summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRenato Botelho <garga@FreeBSD.org>2014-06-19 13:04:57 -0300
committerRenato Botelho <garga@FreeBSD.org>2014-06-19 13:05:06 -0300
commit4f380b62d55185dbbd2efc19a3b03015bdda5a18 (patch)
treef4349e5efb8424d717eeb2ff4ed1a6ac0660bda6
parent2d1e985d2bea59ef4d9712f770474c1d9750f593 (diff)
downloadpfsense-4f380b62d55185dbbd2efc19a3b03015bdda5a18.zip
pfsense-4f380b62d55185dbbd2efc19a3b03015bdda5a18.tar.gz
Remove also . and / from graph
-rw-r--r--usr/local/www/status_rrd_graph_img.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/usr/local/www/status_rrd_graph_img.php b/usr/local/www/status_rrd_graph_img.php
index 6b7a6a8..78cbbdb 100644
--- a/usr/local/www/status_rrd_graph_img.php
+++ b/usr/local/www/status_rrd_graph_img.php
@@ -57,7 +57,7 @@ if ($_GET['style']) {
/* this is used for temp name */
if ($_GET['graph']) {
- $curgraph = str_replace(array("<", ">", ";", "&", "'", '"'), "", htmlspecialchars_decode($_GET['graph'], ENT_QUOTES | ENT_HTML401));
+ $curgraph = str_replace(array("<", ">", ";", "&", "'", '"', '.', '/'), "", htmlspecialchars_decode($_GET['graph'], ENT_QUOTES | ENT_HTML401));
} else {
$curgraph = "custom";
}
OpenPOWER on IntegriCloud