Project

General

Profile

« Previous | Next » 

Revision 475

Added by Matthias over 17 years ago

Added changeset [474] to the branches

View differences:

branches/2.6.x/wb/search/search.php
49 49
	// Get search string
50 50
	if(isset($_REQUEST['string'])) {
51 51
		if ($match!='exact') {
52
			$string=str_replace(',', '', $_REQUEST['string']);
52
			$string=str_replace(',', '', my_htmlspecialchars($_REQUEST['string']));
53 53
		} else {
54
			$string=$_REQUEST['string'];
54
			$string=my_htmlspecialchars($_REQUEST['string']);
55 55
		}
56 56
		// reverse potential magic_quotes action
57 57
		$original_string=$wb->strip_slashes($string);

Also available in: Unified diff