eliseuamaro/gnu-social
1
0
Fork 0
forked from GNUsocial/gnu-social
Code Issues Pull Requests Releases Wiki Activity

[API] Security hotfix for source, picked from postActive

Browse Source
This commit is contained in:
Maiyannah Bishop 2016-09-01 17:11:02 -04:00 committed by Diogo Peralta Cordeiro
parent b6bcd3b8c0
commit 58d9b91dd3
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
actions/apistatusesupdate.php
View File

@ -166,6 +166,7 @@ class ApiStatusesUpdateAction extends ApiAuthAction
parent::prepare($args);
$this->status = $this->trimmed('status');
$this->source = $this->trimmed('source');
$this->lat = $this->trimmed('lat');
$this->lon = $this->trimmed('long');
$matches = array();
@ -294,6 +295,7 @@ class ApiStatusesUpdateAction extends ApiAuthAction
$content = html_entity_decode($status_shortened, ENT_NOQUOTES, 'UTF-8');
$source = html_entity_decode($this->source, ENT_NOQUOTES, 'UTF-8');
$options = array('reply_to' => $reply_to);