fichiers index.php

author: polo <ordipolo@gmx.fr> 2022-03-10 03:12:58 +0100
committer: polo <ordipolo@gmx.fr> 2022-03-10 03:12:58 +0100
commit: f331b3ab14f2b404c2089607aba2e2d434cd510d (patch)
tree: 09ecb84aa9db383f661d9e9a064b0d3d13d40a8b /controller/Security.php
parent: 608856e0853b7e1d9b9b43e69b2012227ccefb43 (diff)
download: melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.tar.gz
melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.tar.bz2
melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.zip
1 files changed, 3 insertions, 3 deletions
diff --git a/controller/Security.php b/controller/Security.php
index c53cdc6..15c44b2 100644
--- a/controller/Security.php
+++ b/controller/Security.php
@@ -1,9 +1,6 @@
 <?php
 // controller/Security.php
-// sécurité faille XSS avec htmLawed
-require('lib/htmlawed/htmLawed.php');
 class Security
 {
        private static $configHtmLawed = array(
@@ -16,6 +13,9 @@ class Security
        public static function secureString(string $chaine): string
        {
+                // sécurité faille XSS avec htmLawed
+                require('lib/htmlawed/htmLawed.php');
                $chaine = htmLawed($chaine, self::$configHtmLawed, self::$specHtmLawed);
            $chaine = trim($chaine); // supprimer espaces, tabulations et sauts de ligne en début et fin de chaine (pour l'entrée de l'éditeur)
            return $chaine;
author	polo <ordipolo@gmx.fr>	2022-03-10 03:12:58 +0100
committer	polo <ordipolo@gmx.fr>	2022-03-10 03:12:58 +0100
commit	f331b3ab14f2b404c2089607aba2e2d434cd510d (patch)
tree	09ecb84aa9db383f661d9e9a064b0d3d13d40a8b /controller/Security.php
parent	608856e0853b7e1d9b9b43e69b2012227ccefb43 (diff)
download	melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.tar.gz melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.tar.bz2 melaine-f331b3ab14f2b404c2089607aba2e2d434cd510d.zip