# HG changeset patch # User Dan # Date 1219521793 14400 # Node ID e492511e31ea9b2b1ea737296b50ed4f1f941a62 # Parent 15cd41fd8a05686a6e0d0dfbad3281200be7e522 Fixed minor (non-XSS) sanitization issue for main_page field in Admin:GeneralConfig diff -r 15cd41fd8a05 -r e492511e31ea plugins/SpecialAdmin.php --- a/plugins/SpecialAdmin.php Sat Aug 23 16:02:07 2008 -0400 +++ b/plugins/SpecialAdmin.php Sat Aug 23 16:03:13 2008 -0400 @@ -403,7 +403,7 @@ get('acpgc_field_site_name'); ?> get('acpgc_field_site_desc'); ?> - get('acpgc_field_main_page'); ?> pagename_field('main_page', htmlspecialchars(str_replace('_', ' ', getConfig('main_page')))); ?> + get('acpgc_field_main_page'); ?> pagename_field('main_page', sanitize_page_id(getConfig('main_page'))); ?> get('acpgc_field_copyright'); ?> get('acpgc_field_copyright_hint'); ?> get('acpgc_field_contactemail'); ?>
get('acpgc_field_contactemail_hint'); ?>