We are no longer offering accounts on this server. Consider https://gitlab.freedesktop.org/ as a place to host projects.

  • Joshua Wise's avatar
    Escape SQL parameter in Profile_tag::moveTag() · 5b118b37
    Joshua Wise authored
    This change adds additional escapes for arguments to
    Profile_tag::moveTag(). The arguments are canonicalized in the API and
    Web UI paths higher up the stack, but this change makes sure that no
    other paths can introduce SQL injection errors.
    5b118b37
Profile_tag.php 11.8 KB