We are no longer offering accounts on this server. Consider https://gitlab.freedesktop.org/ as a place to host projects.

  • Joshua Wise's avatar
    Escape SQL parameter in Profile_tag::moveTag() · 5b118b37
    Joshua Wise authored
    This change adds additional escapes for arguments to
    Profile_tag::moveTag(). The arguments are canonicalized in the API and
    Web UI paths higher up the stack, but this change makes sure that no
    other paths can introduce SQL injection errors.
Profile_tag.php 11.8 KB