Skip to content

Commit

Permalink
Browse files Browse the repository at this point in the history
Fix XSS on invalid IP
  • Loading branch information
ghormann committed Jun 26, 2021
1 parent 1142fc2 commit 1cfdc52
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion www/shutdownRemoteFPP.php
Expand Up @@ -13,7 +13,8 @@
$ip = $_GET['ip'];

if(! filter_var($ip, FILTER_VALIDATE_IP)) {
echo "$ip is not a valid IP address\n";
$clean_ip = htmlspecialchars($ip, ENT_QUOTES, 'UTF-8');
echo "$clean_ip is not a valid IP address\n";
exit(0);
}

Expand Down

0 comments on commit 1cfdc52

Please sign in to comment.