fix unsanitised xchan_name

2 files changed, 20 insertions, 1 deletions

diff --git a/Zotlabs/Update/_1216.php b/Zotlabs/Update/_1216.php
new file mode 100644
index 000000000..843567633
--- /dev/null
+++ b/Zotlabs/Update/_1216.php
@@ -0,0 +1,19 @@
+<?php
+
+namespace Zotlabs\Update;
+
+class _1215 {
+
+	function run() {
+
+		$r = q("UPDATE xchan set xchan_name = 'unknown' where xchan_name like '%<%' ");
+
+		if($r) {
+			return UPDATE_SUCCESS;
+		}
+		else {        
+			return UPDATE_FAILED;
+		}
+	}
+
+}
diff --git a/boot.php b/boot.php
index 8e4877b8e..a873371b1 100755
--- a/boot.php
+++ b/boot.php
@@ -54,7 +54,7 @@ define ( 'STD_VERSION',             '3.7' );
 define ( 'ZOT_REVISION',            '6.0a' );
 
 
-define ( 'DB_UPDATE_VERSION',       1215 );
+define ( 'DB_UPDATE_VERSION',       1216 );
 
 define ( 'PROJECT_BASE',   __DIR__ );