diff options
author | Dries Buytaert <dries@buytaert.net> | 2000-11-13 08:17:45 +0000 |
---|---|---|
committer | Dries Buytaert <dries@buytaert.net> | 2000-11-13 08:17:45 +0000 |
commit | 9559f61fcab156477dd45f4926664b74c3c2d65d (patch) | |
tree | 4c0fb62ac3dca254a2c22023e81d50eb51e579a1 /search.php | |
parent | d4fc1dfa888305c57f52730ba9dcec800896c004 (diff) | |
download | brdo-9559f61fcab156477dd45f4926664b74c3c2d65d.tar.gz brdo-9559f61fcab156477dd45f4926664b74c3c2d65d.tar.bz2 |
Another batch with a lot of internal updates, yet no visual changes to the
site:
- watchdog (rewrite):
+ the collected information provides more details and insights
for post-mortem research
+ input limitation
- database abstraction layer:
+ mysql errors are now verbose and is no longer displayed in a
browser - fixes a possible security risk
- admin.php:
+ updated watchdog page
+ fixed security flaw
- diary.php:
+ fixed nl2br problem
- themes:
+ fixed comment bug in all 3 themes.
- misc:
+ renamed some global variables for sake of consistency:
$sitename --> $site_name
$siteurl --> $site_url
+ added input check where (a) exploitable and (b) possible
+ added input size check
+ various small improvements
+ fixed various typoes
... and much, much more in fact.
Diffstat (limited to 'search.php')
-rw-r--r-- | search.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/search.php b/search.php index 1ea6defc1..d11331684 100644 --- a/search.php +++ b/search.php @@ -4,7 +4,7 @@ $theme->header(); - $terms = stripslashes($terms); + $terms = check_input($terms); $output .= "<TABLE WIDTH=\"100%\" BORDER=\"0\">\n"; $output .= " <TR VALIGN=\"center\">\n"; |