From 63817ea95584d882f12420cb82cdd4e76603fee3 Mon Sep 17 00:00:00 2001
From: David Goodwin <david@palepurple.co.uk>
Date: Sun, 2 Dec 2007 16:53:56 +0000
Subject: [PATCH] fix possible XSS hole (security fix)

git-svn-id: https://svn.code.sf.net/p/postfixadmin/code/trunk@253 a1433add-5e2c-0410-b055-b7f2511e0802
---
 edit-alias.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/edit-alias.php b/edit-alias.php
index e6ab984d..49013d3e 100644
--- a/edit-alias.php
+++ b/edit-alias.php
@@ -127,6 +127,8 @@ if ($_SERVER['REQUEST_METHOD'] == "POST")
    }
 }
 
+$fAddress = htmlentities($fAddress, ENT_QUOTES);
+$fDomain = htmlentities($fDomain, ENT_QUOTES);
 include ("templates/header.php");
 include ("templates/menu.php");
 include ("templates/edit-alias.php");