diff --git a/server_files/controllers/informations.php b/server_files/controllers/informations.php index 012a5e8..6923d19 100644 --- a/server_files/controllers/informations.php +++ b/server_files/controllers/informations.php @@ -88,7 +88,7 @@ class AttributeTeam public function __construct($data) { - $this->team_id = $data["team"]; + $this->team_id = htmlspecialchars($data["team"]); $this->team = Team::fromId($this->team_id); } @@ -148,7 +148,7 @@ class ValidatePayment global $user; foreach ($data as $key => $value) - $this->$key = $value; + $this->$key = htmlspecialchars($value); $this->payment = $user->getPayment(); } diff --git a/server_files/controllers/paiement.php b/server_files/controllers/paiement.php index 6075092..6e042f6 100644 --- a/server_files/controllers/paiement.php +++ b/server_files/controllers/paiement.php @@ -36,7 +36,7 @@ class Pay { public function __construct($data) { foreach ($data as $key => $value) - $this->$key = $value; + $this->$key = htmlspecialchars($value); $this->method = PaymentMethod::fromName(strtoupper($this->method)); diff --git a/server_files/views/inscription.php b/server_files/views/inscription.php index cad1b12..6ebf717 100644 --- a/server_files/views/inscription.php +++ b/server_files/views/inscription.php @@ -22,11 +22,13 @@ if (isset($user) && !$has_error) {
- - +
+ + +