diff options
| author | Lukas Reschke <lukas@statuscode.ch> | 2013-02-11 21:44:26 +0100 |
|---|---|---|
| committer | Lukas Reschke <lukas@statuscode.ch> | 2013-02-11 21:44:26 +0100 |
| commit | ece08cd03e56936e2faa752a7390c86645fe9ba7 (patch) | |
| tree | 2c1ab5a522058ef680b3df8242876dba9d85154d /core | |
| parent | 4bd1ff360b3a5a7154f55e861429f8179e3d9c89 (diff) | |
| download | nextcloud-server-ece08cd03e56936e2faa752a7390c86645fe9ba7.tar.gz nextcloud-server-ece08cd03e56936e2faa752a7390c86645fe9ba7.zip | |
Remove invalid characters from app id to prevent loading of invalid ressources.
Backport of #1569
Diffstat (limited to 'core')
| -rw-r--r-- | core/ajax/translations.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/core/ajax/translations.php b/core/ajax/translations.php index 75679da2c04..c84e778a5f1 100644 --- a/core/ajax/translations.php +++ b/core/ajax/translations.php @@ -25,6 +25,7 @@ require_once '../../lib/base.php'; $app = $_POST["app"]; +$app = OC_App::cleanAppId($app); $l = OC_L10N::get( $app ); |