LBRYFoundation/lbry.com
1
0
Fork 0
mirror of https://github.com/LBRYFoundation/lbry.com.git synced 2025-09-04 21:05:15 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

xss

Browse source
This commit is contained in:
Alex Grintsvayg 2016-09-22 10:06:24 -04:00
parent d7cc836221
commit 07bbc4a95a
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
controller/action/MailActions.class.php
View file

@ -10,6 +10,11 @@ class MailActions extends Actions
}
$nextUrl = Request::getPostParam('returnUrl', '/');
if (!$nextUrl || $nextUrl[0] != '/' || !filter_var($nextUrl, FILTER_VALIDATE_URL))
{
$nextUrl = '/';
}
$email = Request::getPostParam('email');
if (!$email || !filter_var($email, FILTER_VALIDATE_EMAIL))
{