Potenziale vulnerabilità XSS

2024-12-19 03:34:25 +01:00 · 2023-07-20 12:12:27 +02:00 · 2023-07-20 12:12:27 +02:00 · 59566be1f2
commit 59566be1f2
parent 87be1cd6e1
1 changed files with 1 additions and 1 deletions
--- a/oauth2.php
+++ b/oauth2.php
@ -58,7 +58,7 @@ if (empty($_GET['error'])) {
    redirect($redirect);
    exit();
 } else {
-    echo $_GET['error'].'<br>'.$_GET['error_description'].'
+    echo strip_tags($_GET['error']).'<br>'.strip_tags($_GET['error_description']).'
 <br><br>
 <a href="'.$redirect.'">'.tr('Riprova').'</a>';
 }