dépôts
/
lhc
/
web
/
wiklou.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
9c7a647
)
XSS issue : now sanitize search query input
author
Antoine Musso
<hashar@users.mediawiki.org>
Thu, 25 Aug 2005 03:42:18 +0000
(
03:42
+0000)
committer
Antoine Musso
<hashar@users.mediawiki.org>
Thu, 25 Aug 2005 03:42:18 +0000
(
03:42
+0000)
includes/SpecialSearch.php
patch
|
blob
|
history
diff --git
a/includes/SpecialSearch.php
b/includes/SpecialSearch.php
index
265ded6
..
62b207f
100644
(file)
--- a/
includes/SpecialSearch.php
+++ b/
includes/SpecialSearch.php
@@
-35,7
+35,7
@@
require_once( 'Revision.php' );
function wfSpecialSearch( $par = '' ) {
global $wgRequest, $wgUser;
- $search =
$wgRequest->getText( 'search', $par
);
+ $search =
Sanitizer::removeHTMLtags($wgRequest->getText( 'search', $par )
);
$searchPage = new SpecialSearch( $wgRequest, $wgUser );
if( $wgRequest->getVal( 'fulltext' ) ||
!is_null( $wgRequest->getVal( 'offset' ) ) ||