Fixed minor vulnerability in stats.php
This commit is contained in:
parent
4234f5fad3
commit
a85f2c086f
|
@ -86,9 +86,9 @@ header('Pragma: no-cache');
|
||||||
$speedtest = getSpeedtestUserById($_GET['id']);
|
$speedtest = getSpeedtestUserById($_GET['id']);
|
||||||
$speedtests = [];
|
$speedtests = [];
|
||||||
if (false === $speedtest) {
|
if (false === $speedtest) {
|
||||||
echo '<div>There was an error trying to fetch the speedtest result for ID "'.$_GET['id'].'".</div>';
|
echo '<div>There was an error trying to fetch the speedtest result for ID "'.htmlspecialchars($_GET['id'], ENT_HTML5, 'UTF-8').'".</div>';
|
||||||
} elseif (null === $speedtest) {
|
} elseif (null === $speedtest) {
|
||||||
echo '<div>Could not find a speedtest result for ID "'.$_GET['id'].'".</div>';
|
echo '<div>Could not find a speedtest result for ID "'.htmlspecialchars($_GET['id'], ENT_HTML5, 'UTF-8').'".</div>';
|
||||||
} else {
|
} else {
|
||||||
$speedtests = [$speedtest];
|
$speedtests = [$speedtest];
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue