Commit 333009ea authored by Colonel's avatar Colonel
Browse files

removing the XSS div

parent 9ac375b8
......@@ -48,7 +48,7 @@ if ( !$ready )
{
if ( $_REQUEST["action"] == "area_image" || $_REQUEST["action"] == "area_html" )
exit();
//$site->fatal_partial("matmatronch");
$site->fatal_partial("matmatronch");
exit();
}
......@@ -108,7 +108,7 @@ if ( $_REQUEST["action"] == "area_html" )
if ( isset($_REQUEST["highlight"]) )
echo "<div style=\"position:relative;\"><img src=\"?action=area_image&amp;x=$tx&amp;y=$ty&amp;highlight=".$_REQUEST["highlight"]."\" style=\"position:absolute;top:0px;left:0px;\" />";
else
echo "<div style=\"position:relative;\"><img src=\"?action=area_image&amp;x=$tx&amp;y=$ty\" style=\"position:absolute;top:0px;left:0px;\" />";
// echo "<div style=\"position:relative;\"><img src=\"?action=area_image&amp;x=$tx&amp;y=$ty\" style=\"position:absolute;top:0px;left:0px;\" />";
$x1 = $tx;
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment