Results 1 to 9 of 9

Thread: xss injection

  1. #1
    Thread Starter
    Newbie Peksa's Avatar
    Join Date
    Aug 2011
    Location
    Finland
    Posts
    3
    Thanks
    0
    Thanked 3 Times in 2 Posts

    xss injection

    Xss injection: alert(‘xss’) | Search Results | Clipper Demo


    REPAIR search.php
    PHP Code:
    <?php get_header(); ?>

    <?php if (get_option($app_abbr.'_search_stats') == 'yes'appthemes_save_search(); ?>

    <div id="content">
                
            <div class="content-box">
            
                <div class="box-t">&nbsp;</div>
                
                <div class="box-c">
                
                    <div class="box-holder">    
                    
            
                        <?php if(have_posts()) : ?>
                        
                        
                            <div class="head">
                            
                                <h2><?php printf(__("Search for '%s' returned %s results"'appthemes'), trim(strip_tags(esc_attr(get_search_query()))), $wp_query->found_posts); ?></h2>
                                
                            </div> <!-- end head -->                            
                            
                                <?php get_template_part'loop''coupon' ); ?>    
                                
                                
                        <?php else :?>
                        
                        
                            <div class="head">
                            
                                <h2><?php printf(__("Search for '%s' returned %s results"'appthemes'), trim(strip_tags(esc_attr(get_search_query()))), $wp_query->found_posts); ?></h2>
                                
                            </div> <!-- end head -->
                        
                            <div class="blog">
                            
                                <div class="pad10"></div>
                            
                                <h3><?php printf(__('Sorry, no coupons could be found for "%s".''appthemes'), trim(strip_tags(esc_attr(get_search_query())))); ?></h3>
                                
                                <p><?php appthemes_search_suggest(); ?></p>
                                
                                <div class="pad75"></div>
                                
                            </div> <!-- end blog -->
                        
                        
                        <?php endif; ?>        


                    </div> <!-- end box-holder -->
                    
                </div> <!-- end box-c -->
                
                <div class="box-b">&nbsp;</div>
                
            </div> <!-- end content-box -->        
            
    </div> <!-- end content -->

    <?php get_sidebar('coupon'); ?>

    <?php get_footer(); ?>

  2. The Following User Says Thank You to Peksa For This Useful Post:

    azzx (September 25th, 2011)

  3. #2
    jomarkosabel's Avatar
    Join Date
    Mar 2009
    Location
    Philippines
    Posts
    40,927
    Thanks
    168
    Thanked 3,403 Times in 3,274 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Please help our moderating team work more efficiently by not sending us support questions via PM. You can read more about how AppThemes support works here. However, you can send a PM to follow up and remind me if I missed your support request/thread.

    Thank you and have a nice day.

  4. #3
    Member azzx's Avatar
    Join Date
    Mar 2011
    Location
    Australia
    Posts
    61
    Thanks
    6
    Thanked 9 Times in 9 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Last edited by azzx; September 25th, 2011 at 06:50 PM. Reason: More info

  5. #4
    jomarkosabel's Avatar
    Join Date
    Mar 2009
    Location
    Philippines
    Posts
    40,927
    Thanks
    168
    Thanked 3,403 Times in 3,274 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!
    Please help our moderating team work more efficiently by not sending us support questions via PM. You can read more about how AppThemes support works here. However, you can send a PM to follow up and remind me if I missed your support request/thread.

    Thank you and have a nice day.

  6. #5
    Senior Member matt9250's Avatar
    Join Date
    Jan 2011
    Location
    Texas
    Posts
    180
    Thanks
    19
    Thanked 5 Times in 5 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

  7. #6
    Senior Developer, AppThemes scribu's Avatar
    Join Date
    Jun 2011
    Posts
    50
    Thanks
    3
    Thanked 11 Times in 11 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

  8. The Following User Says Thank You to scribu For This Useful Post:

    matt9250 (September 28th, 2011)

  9. #7
    Member azzx's Avatar
    Join Date
    Mar 2011
    Location
    Australia
    Posts
    61
    Thanks
    6
    Thanked 9 Times in 9 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

  10. The Following User Says Thank You to azzx For This Useful Post:

    patrick6411 (September 27th, 2011)

  11. #8
    Rookie couponbliss's Avatar
    Join Date
    Aug 2011
    Location
    United States
    Posts
    8
    Thanks
    0
    Thanked 0 Times in 0 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

  12. #9
    Senior Developer, AppThemes scribu's Avatar
    Join Date
    Jun 2011
    Posts
    50
    Thanks
    3
    Thanked 11 Times in 11 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Hackers and SQL-injection protection.
    By katjaaclass in forum ClassiPress General Discussion
    Replies: 5
    Last Post: February 21st, 2011, 09:22 PM
  2. SQL Injection, Security Concern
    By imomin in forum Report ClassiPress Bugs
    Replies: 1
    Last Post: September 2nd, 2010, 01:40 PM