diff options
| author | Bharat Mediratta <bharat@menalto.com> | 2009-06-03 17:08:23 -0700 |
|---|---|---|
| committer | Bharat Mediratta <bharat@menalto.com> | 2009-06-03 17:08:23 -0700 |
| commit | dd854379c20722a763ae7fe3d097a57a544cae80 (patch) | |
| tree | 4d30410323ace83e43ecc00eca5a94ec25c940ce /modules/tag/controllers | |
| parent | 05d18da3908ff872f0f726affe1babee975084d8 (diff) | |
Sanitize all data we return via json_encode() to guard against XSS and
other data leaks.
Diffstat (limited to 'modules/tag/controllers')
| -rw-r--r-- | modules/tag/controllers/admin_tags.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/tag/controllers/admin_tags.php b/modules/tag/controllers/admin_tags.php index 01884bb8..af5055ff 100644 --- a/modules/tag/controllers/admin_tags.php +++ b/modules/tag/controllers/admin_tags.php @@ -106,7 +106,7 @@ class Admin_Tags_Controller extends Admin_Controller { array("result" => "success", "location" => url::site("admin/tags"), "tag_id" => $tag->id, - "new_tagname" => $tag->name)); + "new_tagname" => p::clean($tag->name))); } else { print json_encode( array("result" => "error", |