cacert/cacert-webdb
9
0
Fork 0
Code Issues Pull requests 2 Projects Releases 4 Wiki Activity

Fixed XSS

Browse source
This commit is contained in:
root 2007-07-03 19:52:43 +00:00
parent a9b6275584
commit 8eb2a6102d
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
pages/account/51.php
View file

@ -18,7 +18,7 @@
$query = "select * from `tverify` where `id`='$uid' and `modified`=0"; $query = "select * from `tverify` where `id`='$uid' and `modified`=0";
$res = mysql_query($query); $res = mysql_query($query);
if(mysql_num_rows($res) > 0) { ?> if(mysql_num_rows($res) > 0) { ?>
<img src="account.php?id=51&photoid=<?=$_GET['photoid']?>&img=show" border="0" width="800"> <img src="account.php?id=51&photoid=<?=$uid ?>&img=show" border="0" width="800">
<? } else { <? } else {
$query = "select * from `tverify` where `id`='$uid' and `modified`=1"; $query = "select * from `tverify` where `id`='$uid' and `modified`=1";
$res = mysql_query($query); $res = mysql_query($query);