Mercurial Mercurial > www > adium.im / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | zip | gz | help
Prevent this parameter to be used with XSS. adiumx.com
authorThijs Alkemade <thijsalkemade@gmail.com>
Sun, 29 Apr 2012 12:59:10 +0200
branchadiumx.com
changeset 656c0246ed2467a
parent 655 6abcf455ae98
child 657 a7d652f239c1
Prevent this parameter to be used with XSS.
index.php file | annotate | diff | comparison | revisions 
     1.1 --- a/index.php	Sun Apr 29 12:26:55 2012 +0200
     1.2 +++ b/index.php	Sun Apr 29 12:59:10 2012 +0200
     1.3 @@ -77,7 +77,7 @@
     1.4          } 
     1.5      }
     1.6  	
     1.7 -	if ($_GET['forceOS'])
     1.8 +	if ($_GET['forceOS'] && array_key_exists($_GET['forceOS'], $downloadLink))
     1.9  		$operatingSystem = $_GET['forceOS'];
    1.10  		
    1.11  	if ($_GET['download'] && $_GET['redirect'] == "301") {
www/adium.im