twin/jul
1
0
Fork 0
mirror of https://github.com/Xkeeper0/jul.git synced 2025-05-19 08:40:21 -07:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #75 from Kak2X/patch-2

Browse Source 
Fix preg_replace de-addslashing error
This commit is contained in:
Xkeeper 2021-06-18 18:12:55 -07:00 committed by GitHub
commit 1d83af0438
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
editprofile.php
View File

@ -214,6 +214,7 @@
$sex=2; $sex=2;
$oldtitle = ""; $oldtitle = "";
$title = stripslashes($title);
while ($oldtitle != $title) { while ($oldtitle != $title) {
$oldtitle = $title; $oldtitle = $title;
$title=preg_replace("'<(b|i|u|s|small|br)>'si", '[\\1]', $title); $title=preg_replace("'<(b|i|u|s|small|br)>'si", '[\\1]', $title);
@ -231,6 +232,8 @@
$title=preg_replace("'(face|style|class|size|id)=\'([^ ].*?)\''si", '', $title); $title=preg_replace("'(face|style|class|size|id)=\'([^ ].*?)\''si", '', $title);
$title=preg_replace("'(face|style|class|size|id)=([^ ].*?)'si", '', $title); $title=preg_replace("'(face|style|class|size|id)=([^ ].*?)'si", '', $title);
} }
$title = addslashes($title);
$bio=preg_replace("'<iframe'si", '&lt;iframe', $bio); $bio=preg_replace("'<iframe'si", '&lt;iframe', $bio);
$bio=preg_replace("'<script'si", '&lt;script', $bio); $bio=preg_replace("'<script'si", '&lt;script', $bio);
$bio=preg_replace("'onload'si", 'o<z>nload', $bio); $bio=preg_replace("'onload'si", 'o<z>nload', $bio);