diff options
| author | Scott Ullrich <sullrich@pfsense.org> | 2010-11-09 11:38:27 -0500 |
|---|---|---|
| committer | Scott Ullrich <sullrich@pfsense.org> | 2010-11-09 11:38:27 -0500 |
| commit | 034f08e7dd102c09e60184220927e6c5cba9f10c (patch) | |
| tree | fc31493bc38958074835e3e344302084e1d652f4 /usr/local/www/fbegin.inc | |
| parent | fea098864053dada6741b99444f10d4406ddeee6 (diff) | |
| download | pfsense-034f08e7dd102c09e60184220927e6c5cba9f10c.zip pfsense-034f08e7dd102c09e60184220927e6c5cba9f10c.tar.gz | |
Fix Misc XSS issues
Diffstat (limited to 'usr/local/www/fbegin.inc')
| -rwxr-xr-x | usr/local/www/fbegin.inc | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/usr/local/www/fbegin.inc b/usr/local/www/fbegin.inc index eb1c0aa..12f8428 100755 --- a/usr/local/www/fbegin.inc +++ b/usr/local/www/fbegin.inc @@ -221,7 +221,7 @@ if(! $g['disablehelpmenu']) { /* NOTICE ACKNOWLEDGE CODE by Erik Kristensen */ if ($_REQUEST['noticeaction'] == 'acknowledge') { - $notice_id = $_REQUEST['noticeid']; + $notice_id = htmlspecialchars($_REQUEST['noticeid']); close_notice($notice_id); } /**********************************************/ |
