wamo/gnu-social
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

validate input, dummy.

Browse Source
This commit is contained in:
Ian Denhardt 2010-08-11 14:56:42 -04:00
parent 8f37b432f8
commit e3b891f0b7
1 changed files with 6 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
plugins/GNUsocialVideo/actions/postvideo.php
View File

@ -58,9 +58,12 @@ class PostvideoAction extends Action {
return; return;
} }
$uri = $_POST['video_uri']; $uri = $_POST['video_uri'];
// XXX: validate your inputs, dummy. $uri = filter_var($uri, FILTER_SANITIZE_URL);
$rend = sprintf('<video src="%s", controls="controls">Sorry, your browser doesn\'t support the video tag.</video>', $uri); $uri = filter_var($uri, FILTER_VALIDATE_URL);
Notice::saveNew($this->user->id, 'video : ' . $uri, 'web', array('rendered' => $rend)); if($uri) {
$rend = sprintf('<video src="%s", controls="controls">Sorry, your browser doesn\'t support the video tag.</video>', $uri);
Notice::saveNew($this->user->id, 'video : ' . $uri, 'web', array('rendered' => $rend));
}
} }
function showContent() function showContent()