Merge pull request #1395 from RaspAP/security/sanitize-ajax-posts

Sanitize post with escapeshellcmd()
2025-03-01 10:31:47 +00:00 · 2023-09-17 07:44:34 -07:00
parent 3575d1d185 e87e7d1d3a
commit 10637efee3
1 changed files with 1 additions and 1 deletions
--- a/ajax/networking/get_wgkey.php
+++ b/ajax/networking/get_wgkey.php
@@ -3,7 +3,7 @@
 require '../../includes/csrf.php';
 require_once '../../includes/config.php';

-$entity = $_POST['entity'];
+$entity = escapeshellcmd($_POST['entity']);

 if (isset($entity)) {