projects / WP-Plugins / glm-employment.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ad29671) | patch
Security Bug Fix
authorSteve Sutton <steve@gaslightmedia.com>
Fri, 24 Apr 2015 20:31:18 +0000 (16:31 -0400)
committerSteve Sutton <steve@gaslightmedia.com>
Fri, 24 Apr 2015 20:31:18 +0000 (16:31 -0400)
commit7ee0bbd486e261294e57b8695ccc5c676f985ad2
tree5645a8a3e4a1c56bcd589d2d965261f3d54930e3tree | snapshot
parentad296712f1ffea5366de59b06f22e95bed470992commit | diff
Security Bug Fix

Multiple WordPress Plugins are vulnerable to Cross-site Scripting (XSS)
due to the misuse of the add_query_arg() and remove_query_arg()
functions. These are popular functions used by developers to modify and
add query strings to URLs within WordPress.
wrapping this call with esc_url or esc_url_raw to prevent the attack.
controllers/front.php diff | blob | history
glm-employment.php diff | blob | history
models/class-glm-list-table.php diff | blob | history
models/job.php diff | blob | history