Add remove_XSS() to folder creation process

ywarnier · ywarnier · commit 937ed5a1d05f · 2015-10-16T02:47:03.000-05:00
diff --git a/main/inc/ajax/document.ajax.php b/main/inc/ajax/document.ajax.php
@@ -76,7 +76,7 @@
     case 'document_destination':
         //obtained the bootstrap-select selected value via ajax
         $dirValue = isset($_POST['dirValue']) ? $_POST['dirValue'] : null;
-        echo $dirValue;
+        echo Security::remove_XSS($dirValue);
         break;
 }
 exit;

Original file line number	Diff line number	Diff line change
`@@ -76,7 +76,7 @@`
`76`	`76`	`case 'document_destination':`
`77`	`77`	`//obtained the bootstrap-select selected value via ajax`
`78`	`78`	`$dirValue = isset($_POST['dirValue']) ? $_POST['dirValue'] : null;`
`79`		`- echo $dirValue;`
	`79`	`+ echo Security::remove_XSS($dirValue);`
`80`	`80`	`break;`
`81`	`81`	`}`
`82`	`82`	`exit;`