Revision 474
Added by Matthias over 17 years ago
| search.php | ||
|---|---|---|
| 49 | 49 |
// Get search string |
| 50 | 50 |
if(isset($_REQUEST['string'])) {
|
| 51 | 51 |
if ($match!='exact') {
|
| 52 |
$string=str_replace(',', '', $_REQUEST['string']);
|
|
| 52 |
$string=str_replace(',', '', my_htmlspecialchars($_REQUEST['string']));
|
|
| 53 | 53 |
} else {
|
| 54 |
$string=$_REQUEST['string'];
|
|
| 54 |
$string=my_htmlspecialchars($_REQUEST['string']);
|
|
| 55 | 55 |
} |
| 56 | 56 |
// reverse potential magic_quotes action |
| 57 | 57 |
$original_string=$wb->strip_slashes($string); |
Also available in: Unified diff
Fixed again bug in search with some html tags (Thanks to thorn)