Age | Commit message (Collapse) | Author |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
- simply delete it
|
|
QUERY_STRING and REQUEST_URI is /not/ encoded (otherwise parameter separation is broken)
|
|
|
|
$_SERVER["QUERY_STRING"] against xss
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
array, too
|
|
|
|
|
|
|
|
sites on other paths
|
|
|
|
|
|
|
|
print_package_listing() -> print_listing()
|
|
|
|
query_package_listing()
|
|
function in lib/style.php
|
|
|