diff options
author | Scott Ullrich <sullrich@pfsense.org> | 2010-11-12 11:03:44 -0500 |
---|---|---|
committer | Scott Ullrich <sullrich@pfsense.org> | 2010-11-12 11:03:51 -0500 |
commit | 225a2f0b4696c497263d0926011a0f39ab08b0f3 (patch) | |
tree | 8a5b402ff00a0c20e630f4beaf0f385edb2a9592 /usr/local/www/interfaces_vlan_edit.php | |
parent | 5812e717eb919e2d1eb94772f33275122415d76c (diff) | |
download | pfsense-225a2f0b4696c497263d0926011a0f39ab08b0f3.zip pfsense-225a2f0b4696c497263d0926011a0f39ab08b0f3.tar.gz |
Bring in XSS id fixes from m0n0wall
Diffstat (limited to 'usr/local/www/interfaces_vlan_edit.php')
-rwxr-xr-x | usr/local/www/interfaces_vlan_edit.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/usr/local/www/interfaces_vlan_edit.php b/usr/local/www/interfaces_vlan_edit.php index 3f26441..6a84932 100755 --- a/usr/local/www/interfaces_vlan_edit.php +++ b/usr/local/www/interfaces_vlan_edit.php @@ -175,7 +175,7 @@ include("head.inc"); <input type="hidden" name="vlanif" value="<?=$pconfig['vlanif']; ?>"> <input name="Submit" type="submit" class="formbtn" value="<?=gettext("Save");?>"> <input type="button" value="<?=gettext("Cancel");?>" onclick="history.back()"> <?php if (isset($id) && $a_vlans[$id]): ?> - <input name="id" type="hidden" value="<?=$id;?>"> + <input name="id" type="hidden" value="<?=htmlspecialchars($id);?>"> <?php endif; ?> </td> </tr> |