Changeset 12 for trunk/client/modules.php

Timestamp:

Dec 2, 2009, 6:20:50 PM (15 years ago)

Author:

roby

Message:

sicurezza anti xss

File:

• trunk/client/modules.php (modified) (2 diffs)

trunk/client/modules.php

@@ -27 +27 @@
 }
 
-
   if(isset($_SERVER['QUERY_STRING']) && (!stripos_clone($_SERVER['QUERY_STRING'], "ad_click") || !stripos_clone($_SERVER['QUERY_STRING'], "url"))) {
     $queryString = $_SERVER['QUERY_STRING'];
-    if (stripos_clone($queryString,'%20union%20') OR stripos_clone($queryString,'/*') OR stripos_clone($queryString,'*/union/*') OR stripos_clone($queryString,'c2nyaxb0') OR stripos_clone($queryString,'+union+') OR stripos_clone($queryString,'http://') OR (stripos_clone($queryString,'cmd=') AND !stripos_clone($queryString,'&cmd')) OR (stripos_clone($queryString,'exec') AND !stripos_clone($queryString,'execu')) OR stripos_clone($queryString,'concat')) {
+    if (stripos_clone($queryString,'%20union%20') OR stripos_clone($queryString,'..') OR stripos_clone($queryString,'+') OR  stripos_clone($queryString,'/*') OR stripos_clone($queryString,'*/union/*') OR stripos_clone($queryString,'c2nyaxb0') OR stripos_clone($queryString,'+union+') OR stripos_clone($queryString,'http://') OR (stripos_clone($queryString,'cmd=') AND !stripos_clone($queryString,'&cmd')) OR (stripos_clone($queryString,'exec') AND !stripos_clone($queryString,'execu')) OR stripos_clone($queryString,'concat')) {
       die('Operazione non consentita');
     }
   }
-
 
 foreach ($_GET as $sec_key => $secvalue) {
@@ -211 +209 @@
 if (isset($param['tema'])){
         $tema=$param['tema'];
+        $tema=htmlentities($tema); // evita xss
+        if(eregi("%", $tema)) $tema="default";// evita xss
         $_SESSION['newtema']="$tema";
         }
+
+if (eregi("%",$_SESSION['newtema'])) $_SESSION['newtema']="default"; // xss
 if (isset($_SESSION['newtema'])) $tema=$_SESSION['newtema']; 
-
-
 
 $PHP_SELF=$_SERVER['PHP_SELF'];