public/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/git/tt-rss.git synced 2025-12-13 21:25:55 +00:00
Code Issues Releases Wiki Activity

prevent absolutely useless 'exploit' (not really) while editing filters (closes #572)

Browse Source
This commit is contained in:
Andrew Dolgov
2013-03-17 14:55:55 +04:00
parent 26e2b18433
commit f01c8ec4f1
2 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
classes/pref/filters.php
View File

@@ -372,7 +372,7 @@ class Pref_Filters extends Handler_Protected {
WHERE id = ".(int)$rule["filter_type"]);
$match_on = db_fetch_result($result, 0, "description");
return T_sprintf("%s on %s in %s", $rule["reg_exp"], $match_on, $feed);
return T_sprintf("%s on %s in %s", strip_tags($rule["reg_exp"]), $match_on, $feed);
}
function printRuleName() {