Incoming payload passed unfiltered
Opened this issue · 0 comments
pljones commented
Hi,
I have been seeing rare issues with the autosong.ninjam.com serverlist.php script that appear to be because it can't handle unexpected newlines in topics -- maybe other special characters, too. It might be that the serverlist.php script should be fixed but another way would be here:
ninjam/ninjam/server/usercon.cpp
Line 1136 in 2a2008f
Filtering incoming chat messages to "suspicious" characters (i.e. under char(32)) to space might be okay.
By the way, is the serverlist.php source around anywhere?
Thanks,
-- Peter