From: Andrew Garrett <werdna@users.mediawiki.org>
Date: Wed, 17 Jan 2007 12:19:53 +0000 (+0000)
Subject: -	$term = htmlspecialchars( $term );
X-Git-Tag: 1.31.0-rc.0~54344
X-Git-Url: http://git.cyclocoop.org//%27%40script%40/%27?a=commitdiff_plain;h=8da1713151014df197a994c009f3963e6ceb1729;p=lhc%2Fweb%2Fwiklou.git

-	$term = htmlspecialchars( $term );
+	$term = urlencode( $term );

($terms is used in a URL, and hence should be url-encoded rather than html-encoded)
---

diff --git a/includes/AjaxFunctions.php b/includes/AjaxFunctions.php
index 248cbec521..600cd573ed 100644
--- a/includes/AjaxFunctions.php
+++ b/includes/AjaxFunctions.php
@@ -108,7 +108,7 @@ function wfSajaxSearch( $term ) {
 	$subtitlemsg = ( Title::newFromText($term) ? 'searchsubtitle' : 'searchsubtitleinvalid' );
 	$subtitle = $wgOut->parse( wfMsg( $subtitlemsg, wfEscapeWikiText($term) ) ); #FIXME: parser is missing mTitle !
 
-	$term = htmlspecialchars( $term );
+	$term = urlencode( $term );
 	$html = '<div style="float:right; border:solid 1px black;background:gainsboro;padding:2px;"><a onclick="Searching_Hide_Results();">'
 		. wfMsg( 'hideresults' ) . '</a></div>'
 		. '<h1 class="firstHeading">'.wfMsg('search')