CodeMirror/appwrite
1
0
Fork 0
mirror of synced 2024-06-28 19:20:25 +12:00
Code Issues Projects Releases Wiki Activity

Use strip_tags in post request too

Browse source
This commit is contained in:
Khushboo Verma 2024-01-11 21:58:21 +05:30
parent 5f42326514
commit 74b9324001
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
app/controllers/api/account.php
View file

@ -1389,11 +1389,11 @@ App::post('/v1/account/sessions/phone')
$messageContent
->setParam('{{project}}', $project->getAttribute('name'))
->setParam('{{secret}}', $secret);
$messageContent = \strip_tags($messageContent->render());
$message = $message->setParam('{{token}}', $messageContent);
$message = $message->setParam('{{token}}', $messageContent->render(true, Template::FILTER_ESCAPE));
$message = $message->render();
$messageDoc = new Document([
'$id' => $token->getId(),
'data' => [
@ -3122,8 +3122,8 @@ App::post('/v1/account/verification/phone')
->setParam('{{project}}', $project->getAttribute('name'))
->setParam('{{secret}}', $secret);
$messageContent = \strip_tags($messageContent->render());
$message = $message->setParam('{{token}}', $messageContent);
$message = $message->render();
$messageDoc = new Document([