Revision 475
Added by Matthias over 17 years ago
branches/2.6.x/wb/search/search.php | ||
---|---|---|
49 | 49 |
// Get search string |
50 | 50 |
if(isset($_REQUEST['string'])) { |
51 | 51 |
if ($match!='exact') { |
52 |
$string=str_replace(',', '', $_REQUEST['string']);
|
|
52 |
$string=str_replace(',', '', my_htmlspecialchars($_REQUEST['string']));
|
|
53 | 53 |
} else { |
54 |
$string=$_REQUEST['string'];
|
|
54 |
$string=my_htmlspecialchars($_REQUEST['string']);
|
|
55 | 55 |
} |
56 | 56 |
// reverse potential magic_quotes action |
57 | 57 |
$original_string=$wb->strip_slashes($string); |
Also available in: Unified diff
Added changeset [474] to the branches