diff options
| author | Frankie B <floppydisk05@aol.com> | 2022-10-02 17:13:59 +0000 |
|---|---|---|
| committer | Frankie B <floppydisk05@aol.com> | 2022-10-02 17:13:59 +0000 |
| commit | f80612e03b5620c9fe45517bc897d50b6a46580b (patch) | |
| tree | 1245db0faf0882d3611b1b24d4e61240e27744c9 /guestbook/submit.php | |
| parent | d32f9aeafd556085c2e47a4b626091fa5be0b96c (diff) | |
Minor crap
Diffstat (limited to 'guestbook/submit.php')
| -rwxr-xr-x | guestbook/submit.php | 5 |
1 files changed, 1 insertions, 4 deletions
diff --git a/guestbook/submit.php b/guestbook/submit.php index 9187223..8c38dca 100755 --- a/guestbook/submit.php +++ b/guestbook/submit.php @@ -17,16 +17,13 @@ <div id="pagebody"> <div id="content"> <?php - ini_set('display_errors', 1); - ini_set('display_startup_errors', 1); - error_reporting(E_ALL); // Open the DB if ($_POST['name'] === "" || $_POST['message'] === "") { echo '<b>You must provide both a name and message!</b>'; } else { $db = new PDO("sqlite:/mnt/data1/webdata/floppydisk/guestbook.db"); $name = $_POST["name"]; - $msg = strip_tags($_POST["message"]); + $msg = htmlspecialchars($_POST["message"]); $showinfo = isset($_POST["showinfo"]) ? true : false; $showip = isset($_POST["showip"]) ? true : false; $ip = $_SERVER['REMOTE_ADDR']; |