From 130052e88a8acedf6be55fba5c13a912681da966 Mon Sep 17 00:00:00 2001
From: Roan Kattouw <catrope@users.mediawiki.org>
Date: Wed, 16 Feb 2011 11:28:58 +0000
Subject: [PATCH] (bug 26603) returnto parameter in login link not escaped when
 viewed on Special:Userlogout

---
 includes/SkinTemplate.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/includes/SkinTemplate.php b/includes/SkinTemplate.php
index d04a84cd61..2c5edf9487 100644
--- a/includes/SkinTemplate.php
+++ b/includes/SkinTemplate.php
@@ -570,7 +570,7 @@ class SkinTemplate extends Skin {
 		$personal_urls = array();
 		$page = $wgRequest->getVal( 'returnto', $this->thisurl );
 		$query = $wgRequest->getVal( 'returntoquery', $this->thisquery );
-		$returnto = "returnto=$page";
+		$returnto = wfArrayToCGI( array( 'returnto' => $page ) );
 		if( $this->thisquery != '' ) {
 			$returnto .= "&returntoquery=$query";
 		}
-- 
2.20.1