diff options
| author | Nicolas LÅ“uillet <nicolas.loeuillet@gmail.com> | 2014-02-21 15:44:13 +0100 |
|---|---|---|
| committer | Nicolas LÅ“uillet <nicolas.loeuillet@gmail.com> | 2014-02-21 15:44:13 +0100 |
| commit | 1570a65381372fca86f5a16f1ec94d59af4babfa (patch) | |
| tree | 6b9c5191eefdf1e6853dda61aa7098f0799a73fb /inc/poche/global.inc.php | |
| parent | d4949327efa15b492cab1bef3fe074290a328a17 (diff) | |
| download | wallabag-1570a65381372fca86f5a16f1ec94d59af4babfa.tar.gz wallabag-1570a65381372fca86f5a16f1ec94d59af4babfa.tar.zst wallabag-1570a65381372fca86f5a16f1ec94d59af4babfa.zip | |
[fix] content is now cleaned by HTML purifier from prevent XSS attack
Diffstat (limited to 'inc/poche/global.inc.php')
| -rw-r--r-- | inc/poche/global.inc.php | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/inc/poche/global.inc.php b/inc/poche/global.inc.php index e2beade1..d22b0588 100644 --- a/inc/poche/global.inc.php +++ b/inc/poche/global.inc.php | |||
| @@ -29,6 +29,8 @@ require_once INCLUDES . '/3rdparty/libraries/feedwriter/FeedItem.php'; | |||
| 29 | require_once INCLUDES . '/3rdparty/libraries/feedwriter/FeedWriter.php'; | 29 | require_once INCLUDES . '/3rdparty/libraries/feedwriter/FeedWriter.php'; |
| 30 | require_once INCLUDES . '/3rdparty/FlattrItem.class.php'; | 30 | require_once INCLUDES . '/3rdparty/FlattrItem.class.php'; |
| 31 | 31 | ||
| 32 | require_once INCLUDES . '/3rdparty/htmlpurifier/HTMLPurifier.auto.php'; | ||
| 33 | |||
| 32 | # Composer its autoloader for automatically loading Twig | 34 | # Composer its autoloader for automatically loading Twig |
| 33 | if (! file_exists(ROOT . '/vendor/autoload.php')) { | 35 | if (! file_exists(ROOT . '/vendor/autoload.php')) { |
| 34 | Poche::$canRenderTemplates = false; | 36 | Poche::$canRenderTemplates = false; |