William/stafett-for-livet
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Add some safety to $templateUrlPrefix

Browse Source
This commit is contained in:
Willy 2021-09-06 09:15:56 +02:00
parent 780df09b70
commit 06afa86602
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
template/_header.php
View File

@ -4,7 +4,7 @@
// Typically we put this before any local urls, such as navigation, icons etc to ensure that they use the correct path. // Typically we put this before any local urls, such as navigation, icons etc to ensure that they use the correct path.
$templateUrlPrefix = dirname(str_replace(realpath($_SERVER['DOCUMENT_ROOT']), '', realpath(__DIR__))); $templateUrlPrefix = dirname(str_replace(realpath($_SERVER['DOCUMENT_ROOT']), '', realpath(__DIR__)));
if ((strlen($templateUrlPrefix) > 1)) { if ((strlen($templateUrlPrefix) > 1)) {
$templateUrlPrefix = $templateUrlPrefix . DIRECTORY_SEPARATOR; $templateUrlPrefix = htmlspecialchars($templateUrlPrefix . DIRECTORY_SEPARATOR);
} }
if ($templateParameters["render"] === false) { if ($templateParameters["render"] === false) {