valvin
/
ttrss
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

disable libxml entity loader to prevent attacks via xml external entities (fixes #833)

This commit is contained in:
Andrew Dolgov 2014-12-08 14:49:54 +03:00
parent 682c7c2911
commit 584411fee6
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
include/functions.php
View File

@ -14,6 +14,8 @@
$fetch_curl_used = false; $fetch_curl_used = false;
$suppress_debugging = false; $suppress_debugging = false;
libxml_disable_entity_loader(true);
mb_internal_encoding("UTF-8"); mb_internal_encoding("UTF-8");
date_default_timezone_set('UTC'); date_default_timezone_set('UTC');
if (defined('E_DEPRECATED')) { if (defined('E_DEPRECATED')) {