-
lindonb authored
[SEC] report string in db: Require full admin privileges; $_POST instead of $_REQUEST; filter and whitelist table and column names; escape html in tpl file; also added table formatting and translation
fb813ca2
[SEC] report string in db: Require full admin privileges; $_POST instead of $_REQUEST; filter and whitelist table and column names; escape html in tpl file; also added table formatting and translation