From: River Tarnell <kateturner@users.mediawiki.org>
Date: Thu, 14 Oct 2004 03:50:14 +0000 (+0000)
Subject: fix xss attack
X-Git-Tag: 1.5.0alpha1~1560
X-Git-Url: https://git.cyclocoop.org/%242?a=commitdiff_plain;h=86de0b5fab4ce064801a0cf6a389f0708ff5912c;p=lhc%2Fweb%2Fwiklou.git

fix xss attack
---

diff --git a/includes/SpecialGeo.php b/includes/SpecialGeo.php
index 04e6c2b66f..c4af429b87 100644
--- a/includes/SpecialGeo.php
+++ b/includes/SpecialGeo.php
@@ -28,7 +28,7 @@
  */
 function wfSpecialGeo( $page = '' ) {
 	global $wgOut, $wgLang, $wgRequest;
-	$coordinates = $wgRequest->getText( 'coordinates' ) ;
+	$coordinates = htmlspecialchars( $wgRequest->getText( 'coordinates' ) );
 	$coordinates = explode ( ":" , $coordinates ) ;
 	$ns = array_shift ( $coordinates ) ;
 	$ew = array_shift ( $coordinates ) ;