From 3221172a6d3e623090449000b4f541849bc9f9a5 Mon Sep 17 00:00:00 2001 From: Jerome Jutteau Date: Wed, 13 Feb 2013 11:39:18 +0000 Subject: [PATCH 1/1] Fix input sanitize in scripting interface --- lib/functions.php | 7 ++++--- 1 file changed, 4 insertions(+), 3 deletions(-) diff --git a/lib/functions.php b/lib/functions.php index d70a17c..87d2cff 100755 --- a/lib/functions.php +++ b/lib/functions.php @@ -801,9 +801,10 @@ jirafeau_async_init ($filename, $type, $one_time, $key, $time, $ip) $p .= $ref; $handle = fopen ($p, 'w'); fwrite ($handle, - str_replace (NL, '', trim ($filename)) . NL. trim ($type) . NL. $password . NL. $time . NL . - ($one_time ? 'O' : 'R') . NL . $ip . NL . date ('U') . NL . - $code . NL); + str_replace (NL, '', trim ($filename)) . NL . + str_replace (NL, '', trim ($type)) . NL . $password . NL . + $time . NL . ($one_time ? 'O' : 'R') . NL . $ip . NL . + date ('U') . NL . $code . NL); fclose ($handle); return $ref . NL . $code ; -- 2.34.1