diff options
| author | yehudah <yehudah@b8457f37-d9ea-0310-8a92-e5e31aec5664> | 2019-08-27 21:23:41 +0000 |
|---|---|---|
| committer | yehudah <yehudah@b8457f37-d9ea-0310-8a92-e5e31aec5664> | 2019-08-27 21:23:41 +0000 |
| commit | 6372e454198ed7a1a792b5bfd286af1178ae7d63 (patch) | |
| tree | fc8259384657cfebd76be774abd214f17eea680c /Postman/PostmanAjaxController.php | |
| parent | 69ef56ca57030e9c76e03ea937c9bdef1a4a3750 (diff) | |
| download | Post-SMTP-6372e454198ed7a1a792b5bfd286af1178ae7d63.zip | |
Security and bugs
Diffstat (limited to 'Postman/PostmanAjaxController.php')
| -rw-r--r-- | Postman/PostmanAjaxController.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/Postman/PostmanAjaxController.php b/Postman/PostmanAjaxController.php index e8e54b6..16d70cc 100644 --- a/Postman/PostmanAjaxController.php +++ b/Postman/PostmanAjaxController.php @@ -49,7 +49,7 @@ if (! class_exists ( 'PostmanAbstractAjaxHandler' )) { */ protected function getRequestParameter($parameterName) { if (isset ( $_POST [$parameterName] )) { - $value = $_POST[$parameterName]; + $value = sanitize_text_field($_POST[$parameterName]); $this->logger->trace ( sprintf ( 'Found parameter "%s"', $parameterName ) ); $this->logger->trace ( $value ); return $value; |