forked from tildeverse/tilde.chat
fix XSS in webchatlink variable
This commit is contained in:
parent
e215660cfe
commit
cdcdc33ecf
|
@ -37,7 +37,7 @@ include __DIR__."/../header.php";
|
|||
<tbody data-link="row" class="rowlink">
|
||||
<?php foreach($stats->channels as $channel): ?>
|
||||
<tr>
|
||||
<td><a href="<?=$channel->webchatlink?>"><?=htmlspecialchars($channel->name)?></a></td>
|
||||
<td><a href="<?=htmlspecialchars($channel->webchatlink)?>"><?=htmlspecialchars($channel->name)?></a></td>
|
||||
<td><?=htmlspecialchars($channel->usercount)?></td>
|
||||
<td style="word-wrap: break-word; white-space: pre-wrap; max-width:700px"><?=htmlspecialchars($channel->topic)?></td>
|
||||
</tr>
|
||||
|
|
Loading…
Reference in New Issue