tweaking escaping of external links

author Tim Starling <tstarling@users.mediawiki.org>

Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)

committer Tim Starling <tstarling@users.mediawiki.org>

Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)
author Tim Starling <tstarling@users.mediawiki.org>
Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)
committer Tim Starling <tstarling@users.mediawiki.org>
Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)
diff --git a/includes/Parser.php b/includes/Parser.php

index 9e0f305..3c539f0 100644 (file)
--- a/includes/Parser.php
+++ b/includes/Parser.php
@@ -1177,6 +1177,9 @@ class Parser
                                         $url = substr( $url, 0, -$numSepChars );
                                 }
  
+                               # Replace &amp; from obsolete syntax with &
+                               $url = str_replace( '&amp;', '&', $url );
+
                                 # Is this an external image?
                                 $text = $this->maybeMakeImageLink( $url );
                                 if ( $text === false ) {
@@ -1197,7 +1200,7 @@ class Parser
                 if ( $this->mOptions->getAllowExternalImages() ) {
                         if ( preg_match( EXT_IMAGE_REGEX, $url ) ) {
                                 # Image found
-                               $text = $sk->makeImage( $url );
+                               $text = $sk->makeImage( htmlspecialchars( $url ) );
                         }
                 }
                 return $text;
author	Tim Starling <tstarling@users.mediawiki.org>
	Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)
committer	Tim Starling <tstarling@users.mediawiki.org>
	Tue, 10 Aug 2004 11:24:24 +0000 (11:24 +0000)