]> source.dussan.org Git - nextcloud-server.git/commitdiff
projects / nextcloud-server.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 588b51d)
Sanitize group in togglegroups
authorMichael Gapczynski <GapczynskiM@gmail.com>
Wed, 9 May 2012 13:23:19 +0000 (09:23 -0400)
committerMichael Gapczynski <GapczynskiM@gmail.com>
Wed, 9 May 2012 13:23:19 +0000 (09:23 -0400)
settings/ajax/togglegroups.php patch | blob | history

diff --git a/settings/ajax/togglegroups.php b/settings/ajax/togglegroups.php
index 3ee3239dd89ddcc42adb97712d0250dd5f3b2a2a..f76e22f51d2b5001845cfa7b38e6b3fd6111aa65 100644 (file)
--- a/settings/ajax/togglegroups.php
+++ b/settings/ajax/togglegroups.php
@@ -10,7 +10,7 @@ $error = "add user to";
 $action = "add";
 
 $username = $_POST["username"];
-$group = $_POST["group"];
+$group = htmlentities($_POST["group"]);
 
 if(!OC_Group::groupExists($group)){
        OC_Group::createGroup($group);
Nextcloud server, a safe home for all your data: https://github.com/nextcloud/server