mirror of
https://github.com/elicpeter/nyx.git
synced 2026-06-06 19:35:13 +02:00
10 lines
270 B
PHP
10 lines
270 B
PHP
<?php
|
|
// Safe: $_GET['lang'] routed through the project-local `strip_crlf` helper
|
|
// before concatenation.
|
|
function strip_crlf($raw) {
|
|
return str_replace(["\r", "\n"], ["", ""], $raw);
|
|
}
|
|
|
|
$lang = $_GET['lang'];
|
|
$safe = strip_crlf($lang);
|
|
header("X-Lang: " . $safe);
|