Skip to content

Commit

Permalink
Fixed XSS vulnerability on search forms
Browse files Browse the repository at this point in the history
  • Loading branch information
@ignacionelson
ignacionelson committed Jan 14, 2022
1 parent 863171e commit 3cf659e
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion includes/functions.forms.php
View file
Expand Up @@ -38,7 +38,7 @@ function form_add_existing_parameters( $ignore = array() )
unset( $_GET[$param] );
}
if ( !is_array( $value ) && !in_array( $param, $ignore ) ) {
echo '<input type="hidden" name="' . $param . '" value="' . encode_html($value) . '">';
echo '<input type="hidden" name="' . htmlentities($param) . '" value="' . html_output($value) . '">';
}
}
}
Expand Down

0 comments on commit 3cf659e

Please sign in to comment.