diff options
| author | Bharat Mediratta <bharat@menalto.com> | 2010-01-02 14:00:00 -0800 |
|---|---|---|
| committer | Bharat Mediratta <bharat@menalto.com> | 2010-01-02 14:00:00 -0800 |
| commit | b3023493f4be1c84412cbcce9273da279655ee6e (patch) | |
| tree | 199ad55c624aac123972f7ef61384851f094e878 /modules | |
| parent | 8e4c48837cfd269400c9399c91e46f8b6d882a4f (diff) | |
Clean the G2 base url so that we can't leak XSS vulnerabilities that
way (highly unlikely, but now it's impossible).
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/g2_import/views/admin_g2_import.html.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/modules/g2_import/views/admin_g2_import.html.php b/modules/g2_import/views/admin_g2_import.html.php index ddd7c26f..0875e7f7 100644 --- a/modules/g2_import/views/admin_g2_import.html.php +++ b/modules/g2_import/views/admin_g2_import.html.php @@ -102,7 +102,7 @@ <code> <IfModule mod_rewrite.c><br/> RewriteEngine On<br/> - RewriteBase <?= g2_import::$g2_base_url ?><br/> + RewriteBase <?= html::clean(g2_import::$g2_base_url) ?><br/> RewriteRule ^(.*)$ <?= url::site("g2/map?path=\$1") ?> [QSA,L]<br/> </IfModule><br/> </code> |