[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Gnuheter-dev] [Bug #2661] Brott mot HTML-standarden: "<img src=\"$imag
|
From: |
nobody |
|
Subject: |
[Gnuheter-dev] [Bug #2661] Brott mot HTML-standarden: "<img src=\"$imageurl\"... |
|
Date: |
Wed, 26 Feb 2003 14:24:07 -0500 |
=================== BUG #2661: LATEST MODIFICATIONS ==================
http://savannah.nongnu.org/bugs/?func=detailbug&bug_id=2661&group_id=2176
Changes by: Patrik Wallström <address@hidden>
Date: 2003-Feb-26 20:24 (Europe/Stockholm)
What | Removed | Added
---------------------------------------------------------------------------
Resolution | None | Fixed
Status | Open | Closed
------------------ Additional Follow-up Comments ----------------------------
Fixad av Aron.
=================== BUG #2661: FULL BUG SNAPSHOT ===================
Submitted by: schultz Project: Gnuheter
Submitted on: 2003-Feb-26 19:15
Category: Bug Severity: 5 - Major
Bug Group: None Resolution: Fixed
Assigned to: None Status: Closed
Summary: Brott mot HTML-standarden: "<img src=\"$imageurl\"...
Original Submission: På rad 70 i filen banners.php kontrolleras inte variabeln
$imageurl för ogiltiga tecken. Det problematiska tecknet är "&", vilket ska
skrivas som "&".
Föreslagen lösning:
$imageurl = htmlspecialchars($imageurl);
alternativt
$imageurl = str_replace("&", "&", $imageurl);
mellan rad 67 och 68 i banners.php.
htmlspecialchars() konverterar även enkla och dubbla citationstecken, samt
tecknen större-än och mindre-än. Den ser också lite snyggare ut, tycker jag :-)
Follow-up Comments
*******************
-------------------------------------------------------
Date: 2003-Feb-26 20:24 By: pawal
Fixad av Aron.
CC list is empty
No files currently attached
For detailed info, follow this link:
http://savannah.nongnu.org/bugs/?func=detailbug&bug_id=2661&group_id=2176