PDA

View Full Version : /resin-admin digest_username escaping


ferg
07-17-2010, 12:32 AM
The HTML escaping fix for the /resin-admin CSS issue looks like:

${resin.root}/doc/admin/digest.php

$digest_username = htmlspecialchars($_REQUEST["digest_username"]);
$digest_password1 = $_REQUEST["digest_password1"];
$digest_password2 = $_REQUEST["digest_password2"];
$digest_realm = htmlspecialchars($_REQUEST["digest_realm"]);