Access Control - Edit: Add additional sanitization on dig value.

app/access_controls/access_control_edit.php

@@ -190,7 +190,7 @@
 						else {
 							$digs[] = [
 								'type'=>$row['node_type'],
-								'value'=>$row['node_cidr'],
+								'value'=>escapeshellarg(str_replace(' ', '', $row['node_cidr'])),
 								'description'=>$row['node_description'],
 							];
 						}
@@ -202,7 +202,7 @@
 				//attempt digs
 				if (!empty($digs) && is_array($digs)) {
 					foreach ($digs as $dig) {
-						$response = shell_exec("dig +noall +answer ".escapeshellarg($dig['value'])." | awk '{ print $5 }'");
+						$response = shell_exec("dig +noall +answer ".$dig['value']." | awk '{ print $5 }'");
 						if (!empty($response)) {
 							$lines = explode("\n", $response);
 							foreach ($lines as $l => $line) {