# HG changeset patch
# User Dan
# Date 1197138313 18000
# Node ID 7785b3e999773425dcecac5c22dc6aa567dd5482
# Parent 2f9b67edc9b198d45e3675e69de3d777bb795efd
Updated for compatibility with newer Enano releases. Oops.
diff -r 2f9b67edc9b1 -r 7785b3e99977 ajim/ajim.php
--- a/ajim/ajim.php Wed Jun 13 22:33:00 2007 -0400
+++ b/ajim/ajim.php Sat Dec 08 13:25:13 2007 -0500
@@ -177,7 +177,7 @@
| Name: | |
| Website: | |
| Message: |
- |
+ |
AjIM powered |
';
@@ -486,6 +486,8 @@
// The client-side javascript and CSS code
if(isset($_GET['js']) && isset($_GET['id']) && isset($_GET['path']) && isset($_GET['pfx'])) {
+ if ( !preg_match('/^([a-z0-9_]+)$/', $_GET['id']) )
+ die('XSS');
header('Content-type: text/javascript');
?>
//