Contribution Date
Technology
Contribution Project
Contribution Details
Hi sanjayk,
My findings for your module as follows:
1) As suggested by braindrift,
Security Issue: You really should sanitize/validate the $_REQUEST['str'] before using it in div_screenshot_create() and just copying it into a file.
2) You should remove the package = Custom from your info file.
3) Suggestion: Instead of using $_REQUEST['str'], you can create a settings form to save div ids and provide capture functionality accordingly.
Thanks
Contribution Issue Link
Files count
0
Patches count
0