Clean tags from HTTP UA

Users can alter this, causing an XSS
2026-03-03 07:13:59 +01:00 · 2014-04-22 08:06:17 +01:00
parent d6a7db8f3e
commit 493950667b
1 changed files with 1 additions and 1 deletions
--- a/editor.php
+++ b/editor.php
@@ -83,7 +83,7 @@ h2 {color: rgba(0,198,255,0.7)}
 		<span id="serverDT"></span><br><br>
 		<h2>your device</h2>
 		<span class="heading">Browser:</span><br>
-		<?php echo $_SERVER['HTTP_USER_AGENT'];?><br><br>
+		<?php echo xssClean($_SERVER['HTTP_USER_AGENT'],"tags");?><br><br>
 		<span class="heading">Your IP:</span><br>
 		<?php echo $_SERVER['REMOTE_ADDR'];?><br><br>
 	</div>