rdd.ro/nunta
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix up self xss in contact form JS

Browse Source
This commit is contained in:
David Miller 2017-01-23 17:44:54 -05:00
parent ba99283be0
commit 674f0a3fda
2 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
js/contact_me.js
View File

@ -47,7 +47,7 @@ $(function() {
$('#success').html("<div class='alert alert-danger'>"); $('#success').html("<div class='alert alert-danger'>");
$('#success > .alert-danger').html("<button type='button' class='close' data-dismiss='alert' aria-hidden='true'>&times;") $('#success > .alert-danger').html("<button type='button' class='close' data-dismiss='alert' aria-hidden='true'>&times;")
.append("</button>"); .append("</button>");
$('#success > .alert-danger').append("<strong>Sorry " + firstName + ", it seems that my mail server is not responding. Please try again later!"); $('#success > .alert-danger').append($("<strong>").text("Sorry " + firstName + ", it seems that my mail server is not responding. Please try again later!"));
$('#success > .alert-danger').append('</div>'); $('#success > .alert-danger').append('</div>');
//clear all fields //clear all fields
$('#contactForm').trigger("reset"); $('#contactForm').trigger("reset");
@ -69,4 +69,4 @@ $(function() {
/*When clicking on Full hide fail/success boxes */ /*When clicking on Full hide fail/success boxes */
$('#name').focus(function() { $('#name').focus(function() {
$('#success').html(''); $('#success').html('');
}); });

2
mail/contact_me.php
View File

@ -23,4 +23,4 @@ $headers = "From: noreply@yourdomain.com\n"; // This is the email address the ge
$headers .= "Reply-To: $email_address"; $headers .= "Reply-To: $email_address";
mail($to,$email_subject,$email_body,$headers); mail($to,$email_subject,$email_body,$headers);
return true; return true;
?> ?>