mirror of
https://github.com/renbaoshuo/S2OJ.git
synced 2024-11-25 07:58:40 +00:00
fix(web): json_encode for REQUEST_URI enter in /reset-password
Ref: https://huntr.dev/bounties/75bd6901-5760-412d-96fc-b664e4644fea/
This commit is contained in:
parent
ebf541ab91
commit
e357d1cb91
@ -63,7 +63,7 @@ $(document).ready(function() {
|
|||||||
if (!validateResetPwPost()) {
|
if (!validateResetPwPost()) {
|
||||||
return false;
|
return false;
|
||||||
}
|
}
|
||||||
$.post('<?=$_SERVER['REQUEST_URI']?>', {
|
$.post(json_encode(<?=$_SERVER['REQUEST_URI']?>), {
|
||||||
reset : '',
|
reset : '',
|
||||||
newPW : md5($('#input-password').val(), "<?= getPasswordClientSalt() ?>")
|
newPW : md5($('#input-password').val(), "<?= getPasswordClientSalt() ?>")
|
||||||
}, function(res) {
|
}, function(res) {
|
||||||
|
Loading…
Reference in New Issue
Block a user