From d2740b7e3a4b4f38eac66ffe20b773ea10bcd821 Mon Sep 17 00:00:00 2001
From: lux <lux@knownsec.com>
Date: Wed, 23 Jul 2014 15:56:09 +0800
Subject: [PATCH] =?UTF-8?q?=E4=BF=AE=E8=A1=A5=E6=B7=BB=E5=8A=A0TODO?=
 =?UTF-8?q?=E7=9A=84XSS=E6=BC=8F=E6=B4=9E?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 model/api.function.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/model/api.function.php b/model/api.function.php
index 78ad2d2..3a54fc7 100644
--- a/model/api.function.php
+++ b/model/api.function.php
@@ -132,6 +132,7 @@ function add_todo( $text , $is_public = 0 , $uid = null )
 {
 	if( $uid == null || intval($uid) < 1 ) $uid = $_SESSION['uid'];
 	
+    $text = htmlspecialchars($text, ENT_QUOTES|ENT_XHTML, 'UTF-8');
 	$sql = "INSERT INTO `todo` ( `content` ,  `timeline` , `owner_uid` ) VALUES ( '" . s( $text ) . "'  , NOW() , '" . intval( $uid ) . "' ) ";
 	run_sql( $sql );