Skip to content
GitLab
Menu
Projects
Groups
Snippets
Help
Help
Support
Community forum
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in
Toggle navigation
Menu
Open sidebar
mahara
mahara
Commits
6398759a
Commit
6398759a
authored
Mar 04, 2009
by
Richard Mansfield
Browse files
Escape login-as strings
parent
b64d6c58
Changes
2
Hide whitespace changes
Inline
Side-by-side
htdocs/admin/users/edit.php
View file @
6398759a
...
...
@@ -467,7 +467,7 @@ $smarty->assign('institutions', count($allinstitutions) > 1);
$smarty
->
assign
(
'institutionform'
,
$institutionform
);
if
(
$id
!=
$USER
->
get
(
'id'
)
&&
is_null
(
$USER
->
get
(
'parentuser'
)))
{
$loginas
=
get_string
(
'loginasuser'
,
'admin'
,
$user
->
username
);
$loginas
=
get_string
(
'loginasuser'
,
'admin'
,
htmlspecialchars
(
$user
->
username
)
)
;
}
else
{
$loginas
=
null
;
}
...
...
htdocs/user/view.php
View file @
6398759a
...
...
@@ -277,7 +277,7 @@ else if (!empty($loggedinid)) {
}
if
(
$userid
!=
$USER
->
get
(
'id'
)
&&
$USER
->
is_admin_for_user
(
$user
)
&&
is_null
(
$USER
->
get
(
'parentuser'
)))
{
$loginas
=
get_string
(
'loginasuser'
,
'admin'
,
$user
->
username
);
$loginas
=
get_string
(
'loginasuser'
,
'admin'
,
htmlspecialchars
(
$user
->
username
)
)
;
}
else
{
$loginas
=
null
;
}
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
.
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment