Several security issues

Several security issues found by "Thomas Weber"
Resolved thanks ! 👍

Author: GaneshKandu

kchat/actions/profile.php

@@ -8,12 +8,14 @@
 
 class profile extends action{
 	function action(){
-		
+		if($this->data['user']['uname'] != $_POST['uname']){
+			return false;
+		}
 		$arr = array(
 			'profile' => array(
 				'fname' => $_POST['fname'],
 				'lname' => $_POST['lname'],
-				'uname' => $_POST['uname'],
+				'uname' => $this->data['user']['uname'],
 				'password' => $_POST['password']
 			)
 		);
@@ -23,7 +25,7 @@ function action(){
 		}
 
 		$stmt = $this->data['pdo']->prepare("SELECT * FROM {$this->dbprefix}users where uname =:uname;");
-		$stmt->execute(array('uname' => $_POST['uname']));
+		$stmt->execute(array('uname' => $this->data['user']['uname']));
 		$row = $stmt->fetch();
 		if(empty($arr['profile']['password'])){
 			$arr['profile']['password'] = $row['password'];

kchat/ctrl/ajax.php

@@ -7,7 +7,7 @@
 */
 
 class ajax extends ctrl{
-		
+	
 	function login(){
 		if(isAjax($this->data)){
 			if(isset($_POST['action'])){

kchat/lib/config.php

@@ -52,7 +52,7 @@ function config(){
 		"salt" => _rand(32),
 		"key" => _rand(12),
 		"Admin" => "KkEtq2SNzvl02OR", //_rand(8),
-		"version" => "1.0.6",
+		"version" => "1.0.7",
 		"timezone" => date_default_timezone_get(),
 	);
 }

kchat/lib/global.php

@@ -427,3 +427,18 @@ function is_ip4($ip){
 	}
 	return true;
 }
+
+function rstrip_tags($arr){
+	if(is_array($arr)){
+		foreach($arr as $k => $v){
+			$arr[$k] = rstrip_tags($v);
+		}
+		return $arr;
+	}else{
+		if(is_string($arr)){
+			return htmlspecialchars($arr);
+		}else{
+			return $arr;
+		}
+	}
+}

kchat/lib/mvc.php

@@ -103,6 +103,7 @@ class ctrl{
 	var $model = null;
 
 	function __construct($data){
+		$data = rstrip_tags($data);
 		$this->load = new view($data);
 		$this->load->appendfile(array());
 		$this->model = new model($data);