diff options
| author | Guillaume Mazoyer <respawneral@gmail.com> | 2014-09-03 11:19:56 +0200 |
|---|---|---|
| committer | Guillaume Mazoyer <respawneral@gmail.com> | 2014-09-03 11:19:56 +0200 |
| commit | 0512ffb7f70f85223a71ffd539b74459793178af (patch) | |
| tree | 9c97d86b9b3f4ba908f2f217c70a777dbb03b5a5 /execute.php | |
| parent | d9fcd2d238eaf8ab61de5c8a1ef5ad6fbd5d1778 (diff) | |
Add config to disallow the use of private and reserved IP ranges.
Diffstat (limited to 'execute.php')
| -rw-r--r-- | execute.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/execute.php b/execute.php index 330e070..26e91af 100644 --- a/execute.php +++ b/execute.php @@ -78,9 +78,9 @@ if (isset($_POST['doc']) && !empty($_POST['doc'])) { if (isset($_POST['query']) && !empty($_POST['query']) && isset($_POST['routers']) && !empty($_POST['routers']) && isset($_POST['parameters']) && !empty($_POST['parameters'])) { - $query = htmlspecialchars($_POST['query']); - $hostname = htmlspecialchars($_POST['routers']); - $parameters = htmlspecialchars($_POST['parameters']); + $query = trim($_POST['query']); + $hostname = trim($_POST['routers']); + $parameters = trim($_POST['parameters']); // Do the processing $router = Router::instance($hostname, $requester); |