Fix forum XSS

This commit is contained in:
slawkens
2023-11-27 22:56:38 +01:00
parent 98332f1483
commit d1046ba21d
3 changed files with 13 additions and 0 deletions

View File

@@ -31,6 +31,11 @@ if(Forum::canPost($account_logged)) {
$post_topic = isset($_REQUEST['topic']) ? stripslashes($_REQUEST['topic']) : '';
$smile = (isset($_REQUEST['smile']) ? (int)$_REQUEST['smile'] : 0);
$html = (isset($_REQUEST['html']) ? (int)$_REQUEST['html'] : 0);
if (!superAdmin()) {
$html = 0;
}
$saved = false;
if (isset($_REQUEST['save'])) {
$length = strlen($post_topic);