LX3JL/xlxd
1
0
Fork 0
mirror of https://github.com/LX3JL/xlxd.git synced 2025-12-05 23:32:00 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

XSS Vulnerability Patches and Security Enhancements for Dashboard1 - Update changes.txt to reflect reality

Browse source
This commit is contained in:
Andy Taylor 2025-10-14 14:38:59 +01:00
parent e11754a4e0
commit c42b927cdb
1 changed files with 0 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
dashboard/changes.txt
View file

@ -28,7 +28,6 @@ Files Changed and Security Fixes:
- "class.parsexml.php"
* Added element name sanitization to prevent XML injection
* Added strip_tags() to remove HTML/XML from extracted content
- "class.peer.php"
* Added input validation in constructor for all parameters
@ -47,10 +46,6 @@ Files Changed and Security Fixes:
* Callsign format validation
* Module validation
- "config.inc.php"
* Secured external config file inclusion with path validation
* Added realpath() checks to prevent directory traversal
- "modules.php"
* All output wrapped with sanitize_output() to prevent XSS