| commit | 3ac5bc528b219550e93e2930d131600b1946cdf4 | |
| author | bradymiller <bradymiller@users.sourceforge.net> | |
| Tue, 2 Nov 2010 18:48:31 +0000 (2 11:48 -0700) | ||
| committer | bradymiller <bradymiller@users.sourceforge.net> | |
| Tue, 2 Nov 2010 18:56:21 +0000 (2 11:56 -0700) | ||
| tree | 5c8dc57b0d3d817f6257d3997ea6db1094ea3131 | treesnapshot (tar.gz zip) |
| parent | b2f22765a34c7f727c2626c8b78b93bf1219cc9d | commitdiff |
Finished security overhaul of the transactions report:
1) Removed unneeded formData function
(These functions are now only needed rarely; ie. if need to escape a column
label in a sql query)
2) Ensured all output that goes to screen is wrapped by htmlspecialchars
(completely eliminates cross-scripting attacks)
1) Removed unneeded formData function
(These functions are now only needed rarely; ie. if need to escape a column
label in a sql query)
2) Ensured all output that goes to screen is wrapped by htmlspecialchars
(completely eliminates cross-scripting attacks)
| interface/reports/inventory_transactions.php | diffblobblamehistory |