github/torrentpier
1
0
Fork 0
mirror of https://github.com/torrentpier/torrentpier synced 2025-08-21 22:03:49 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Use strip_tags() for message in prompt_for_confirm() (#991)

Browse source
This commit is contained in:
Roman Kelesidis 2023-10-26 15:13:17 +07:00 committed by GitHub
commit f4b2676f66
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/Ajax.php
View file

@ -142,7 +142,7 @@ class Ajax
* @param int $error_code * @param int $error_code
* @throws Exception * @throws Exception
*/ */
public function ajax_die(string $error_msg, int $error_code = E_AJAX_GENERAL_ERROR) public function ajax_die(string $error_msg, int $error_code = E_AJAX_GENERAL_ERROR): void
{ {
$this->response['error_code'] = $error_code; $this->response['error_code'] = $error_code;
$this->response['error_msg'] = strip_tags($error_msg); $this->response['error_msg'] = strip_tags($error_msg);
@ -244,14 +244,14 @@ class Ajax
* @param string $confirm_msg * @param string $confirm_msg
* @throws Exception * @throws Exception
*/ */
public function prompt_for_confirm(string $confirm_msg) public function prompt_for_confirm(string $confirm_msg): void
{ {
if (empty($confirm_msg)) { if (empty($confirm_msg)) {
$this->ajax_die('false'); $this->ajax_die('false');
} }
$this->response['prompt_confirm'] = 1; $this->response['prompt_confirm'] = 1;
$this->response['confirm_msg'] = $confirm_msg; $this->response['confirm_msg'] = strip_tags($confirm_msg);
$this->send(); $this->send();
} }