Headline
CVE-2022-2066: Sanitized username when showing user not found message. · NeoRazorX/facturascripts@73a6595
Cross-site Scripting (XSS) - Reflected in GitHub repository neorazorx/facturascripts prior to 2022.06.
Permalink
Browse files
Sanitized username when showing user not found message.
------ Saneado nombre de usuario al mostrar el mensaje de usuario no encontrado.
- Loading branch information
1 parent 298eb4b commit 73a6595ca85984d65f656c6356fabb23d1936c54
Showing 1 changed file with 1 addition and 1 deletion.
@@ -287,7 +287,7 @@ private function userAuth()
}
$this->ipWarning();
ToolBox::i18nLog()->warning('login-user-not-found’, [‘%nick%’ => $nick]);
ToolBox::i18nLog()->warning('login-user-not-found’, [‘%nick%’ => htmlspecialchars($nick)]);
return false;
}
0 comments on commit 73a6595
Please sign in to comment.