Digitalstack/ZnoteAAC
2
0
Fork 0
mirror of https://github.com/Znote/ZnoteAAC.git synced 2025-10-13 18:04:54 +02:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #96 from cornex1/patch-2

Browse Source 
Fix #79 Fixed illegal string filter on name change
This commit is contained in:
Stefan A. Brannfjell
2014-05-08 10:04:21 +02:00
parent fb52ef0c4f 9db05fe4c1
commit 02179065f3
1 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
myaccount.php
View File

@@ -97,6 +97,17 @@ if (!empty($_POST['change_name'])) {
$error = true;
}
}
// Check name for illegal characters.
function checkNewNameForIllegal($name) {
if (preg_match('#^[\0-9åäö&()+%/*$€é,.\'"-]*$#i', $name)) {
return true;
}
return false;
}
if (checkNewNameForIllegal($newname)) {
$error = true;
echo 'This name contains illegal characters.';
}
if ($error === false) {
// Change the name!
mysql_update("UPDATE `players` SET `name`='$newname' WHERE `id`='".$player['id']."' LIMIT 1;");
@@ -359,4 +370,4 @@ if (!empty($_POST['selected_comment'])) {
</div>
<?php
}
include 'layout/overall/footer.php'; ?>
include 'layout/overall/footer.php'; ?>