mirror of
https://github.com/RYGhub/royalnet.git
synced 2024-11-24 03:54:20 +00:00
Prevent injections
This commit is contained in:
parent
440ee10fa5
commit
d6474a2f97
1 changed files with 1 additions and 1 deletions
|
@ -109,7 +109,7 @@ def page_setcss():
|
||||||
abort(403)
|
abort(403)
|
||||||
return
|
return
|
||||||
css = request.form.get("css", "")
|
css = request.form.get("css", "")
|
||||||
if "<style" in css:
|
if "</style" in css:
|
||||||
abort(400)
|
abort(400)
|
||||||
return
|
return
|
||||||
if ccss is None:
|
if ccss is None:
|
||||||
|
|
Loading…
Reference in a new issue