From 2cb1563f63386b35a69e460051aa9b4a2851d104 Mon Sep 17 00:00:00 2001
From: ftimme <ft@falkotimme.com>
Date: Wed, 30 May 2012 07:30:44 -0400
Subject: [PATCH] - Added (clickable) placeholders to client messaging function. - Added check so that the client password isn't inserted into the message (for security reasons).

---
 interface/web/monitor/show_log.php |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/interface/web/monitor/show_log.php b/interface/web/monitor/show_log.php
index c033c9c..10abacd 100644
--- a/interface/web/monitor/show_log.php
+++ b/interface/web/monitor/show_log.php
@@ -124,7 +124,7 @@
 if(isset($record['data'])) {
 	$data = unserialize($record['data']);
 
-	$logData = nl2br($data);
+	$logData = nl2br(htmlspecialchars($data));
 
 	$app->tpl->setVar("log_data", $logData);
 } else {

--
Gitblit v1.9.1