Skip to content

Commit

Permalink
Realiza sanitização no valor para evitar XSS
Browse files Browse the repository at this point in the history
  • Loading branch information
@Crispy-fried-chicken
Crispy-fried-chicken authored Aug 29, 2024
1 parent 4c12de0 commit 348021a
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions ieducar/intranet/include/clsCampos.inc.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1436,6 +1436,7 @@ classe = (classe == \'formmdtd\')? \'formlttd tr_\' + This.nome : \'formmdtd tr_
}

$retorno .= "<input class='{$class}' type='text' name=\"{$nome}\" id=\"{$nome}\" value=\"{$campo_valor}\" size=\"{$componente[4]}\" maxlength=\"{$componente[5]}\" {$evento} {$disabled}> {$componente[7]}";
$campo_valor = ! is_null($campo_valor) ? htmlspecialchars($campo_valor, ENT_QUOTES) : null;
break;

case 'monetario':
Expand Down

0 comments on commit 348021a

Please sign in to comment.