Headline
CVE-2022-27475: + sanitize xss function · tramyardg/hotel-mgmt-system@3aa5fdd
Cross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers to execute arbitrary code when when /admin.php is loaded.
Permalink
Browse files
+ sanitize xss function
- Loading branch information
tramyardg committed
Mar 28, 2022
1 parent 2a9161e commit 3aa5fdd736927f4ba8d4b7efbba850a258ab42ce
Showing with 7 additions and 0 deletions.
- +7 −0 app/Util.php
7 app/Util.php
Show comments View file
@@ -36,4 +36,11 @@ public static function displayAlertV2($message, $type)
<p class="mb-0">’ . $message[“footer”] . '</p>
</div>’;
}
public static function sanitize_xss($value)
{
return htmlspecialchars(strip_tags($value));
}
}
0 comments on commit 3aa5fdd
Please sign in to comment.