chagenbu Thu Feb 8 14:33:24 2001 EDT
Modified files:
/php4/pear/Mail Sendmail.php
Log:
die on backticks in an attempted from address, also.
Index: php4/pear/Mail/Sendmail.php
diff -u php4/pear/Mail/Sendmail.php:1.2 php4/pear/Mail/Sendmail.php:1.3
--- php4/pear/Mail/Sendmail.php:1.2 Wed Feb 7 12:56:02 2001
+++ php4/pear/Mail/Sendmail.php Thu Feb 8 14:33:24 2001
@@ -82,7 +82,8 @@
return new PEAR_Error('No from address given.');
} elseif (strstr($from, ' ') ||
strstr($from, ';') ||
- strstr($from, '&')) {
+ strstr($from, '&') ||
+ strstr($from, '`')) {
return new PEAR_Error('From address specified with dangerous
characters.');
}
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]
