fix xss attack

diff --git a/includes/OutputPage.php b/includes/OutputPage.php
index 0e8d533..f6a4a1a 100644 (file)
--- a/includes/OutputPage.php
+++ b/includes/OutputPage.php
@@ -673,6 +673,7 @@ class OutputPage {
                if ( $returnto == NULL ) {
                        $returnto = $wgRequest->getText( 'returnto' );
                }
+               $returnto = htmlspecialchars( $returnto );
 
                $sk = $wgUser->getSkin();
                if ( '' == $returnto ) {