aboutsummaryrefslogtreecommitdiffhomepage
path: root/index.php
diff options
context:
space:
mode:
authorArthurHoaro <arthur@hoa.ro>2017-10-07 11:27:44 +0200
committerArthurHoaro <arthur@hoa.ro>2017-10-07 11:27:44 +0200
commitd14555a3dfdc0d16badefcc54054802ae83752a4 (patch)
treefc5a9a525f6fdc7d57096d23029c1f24130d0115 /index.php
parenta59bbf50d7530d7e82a91896a210b9da49cb1568 (diff)
downloadShaarli-d14555a3dfdc0d16badefcc54054802ae83752a4.tar.gz
Shaarli-d14555a3dfdc0d16badefcc54054802ae83752a4.tar.zst
Shaarli-d14555a3dfdc0d16badefcc54054802ae83752a4.zip
Fix security issue reported by @chbi
Vulnerability introduced by 6ccd0b218fbd34de750f55b78f3dc43bb3d9fa8e - release with Shaarli v0.9.1.
Diffstat (limited to 'index.php')
-rw-r--r--index.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/index.php b/index.php
index fb00a9fa..8f0179e5 100644
--- a/index.php
+++ b/index.php
@@ -840,7 +840,7 @@ function renderPage($conf, $pluginManager, $LINKSDB, $history)
840 } 840 }
841 841
842 $data = array( 842 $data = array(
843 'search_tags' => implode(' ', $filteringTags), 843 'search_tags' => implode(' ', escape($filteringTags)),
844 'tags' => $tagList, 844 'tags' => $tagList,
845 ); 845 );
846 $pluginManager->executeHooks('render_tagcloud', $data, array('loggedin' => isLoggedIn())); 846 $pluginManager->executeHooks('render_tagcloud', $data, array('loggedin' => isLoggedIn()));
@@ -870,7 +870,7 @@ function renderPage($conf, $pluginManager, $LINKSDB, $history)
870 } 870 }
871 871
872 $data = [ 872 $data = [
873 'search_tags' => implode(' ', $filteringTags), 873 'search_tags' => implode(' ', escape($filteringTags)),
874 'tags' => $tags, 874 'tags' => $tags,
875 ]; 875 ];
876 $pluginManager->executeHooks('render_taglist', $data, ['loggedin' => isLoggedIn()]); 876 $pluginManager->executeHooks('render_taglist', $data, ['loggedin' => isLoggedIn()]);
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-11 15:49:37 +0000