Magic-Mirror/gecko-dev
1
0
Fork 0
mirror of https://github.com/mozilla/gecko-dev.git synced 2024-10-14 22:05:44 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Bug 236650: html_quote and validate email addresses in editueser.cgi

Browse Source 
patch by vlad
r=joel,justdave
a=justdave
This commit is contained in:
bugreport%peshkin.net 2004-07-10 07:27:48 +00:00
parent 74f086a329
commit 4a6e40541c
1 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
webtools/bugzilla/editusers.cgi
View File

@ -357,7 +357,7 @@ if ($action eq 'list') {
}
$realname = ($realname ? html_quote($realname) : "<FONT COLOR=\"red\">missing</FONT>");
print "<TR>\n";
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s$user$e</B></A></TD>\n";
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=edit&user=", url_quote($user), "\"><B>$s", html_quote($user), "$e</B></A></TD>\n";
print " <TD VALIGN=\"top\">$s$realname$e</TD>\n";
if ($candelete) {
print " <TD VALIGN=\"top\"><A HREF=\"editusers.cgi?action=del&user=", url_quote($user), "\">Delete</A></TD>\n";
@ -749,6 +749,14 @@ if ($action eq 'update') {
WHERE login_name=" . SqlQuote($userold));
my ($thisuserid) = FetchSQLData();
my $emailregexp = Param("emailregexp");
unless ($user =~ m/$emailregexp/) {
print "The user name entered must be a valid e-mail address. Please press\n";
print "<b>Back</b> and try again.\n";
PutTrailer($localtrailer);
exit;
}
my @grpadd = ();
my @grpdel = ();
my $chggrp = 0;