diff options
| author | Marc Delisle <marc@infomarc.info> | 2011-08-06 23:05:59 +0400 |
|---|---|---|
| committer | Marc Delisle <marc@infomarc.info> | 2011-08-06 23:05:59 +0400 |
| commit | 0f5f2d960184db7333ecf7d52da406cae306412b (patch) | |
| tree | 5efb28296620f0b799d50fef16c61b6d1a535ca6 /tbl_tracking.php | |
| parent | 39edf6e1fbe4a39f6fec0919d60eca5dfc2708ff (diff) | |
XSS with IE <= 8.x (semicolon and attachment headers
Diffstat (limited to 'tbl_tracking.php')
| -rw-r--r-- | tbl_tracking.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/tbl_tracking.php b/tbl_tracking.php index 7cf7cd5223..5544ecdcdd 100644 --- a/tbl_tracking.php +++ b/tbl_tracking.php @@ -111,7 +111,7 @@ if (isset($_REQUEST['report_export']) && $_REQUEST['export_type'] == 'sqldumpfil foreach($entries as $entry) { $dump .= $entry['statement']; } - $filename = 'log_' . htmlspecialchars($_REQUEST['table']) . '.sql'; + $filename = 'log_' . str_replace(';', '', htmlspecialchars($_REQUEST['table'])) . '.sql'; header('Content-Type: text/x-sql'); header('Expires: ' . gmdate('D, d M Y H:i:s') . ' GMT'); header('Content-Disposition: attachment; filename="' . $filename . '"'); |