extern/egroupware_official
1
0
Fork 0
mirror of https://github.com/EGroupware/egroupware.git synced 2024-12-01 20:34:20 +01:00
Code Issues Packages Projects Releases Wiki Activity

url need to run throught htmlspecialchars too (like every attribute in html markup), eg. "x&reg_id=" fails otherwise

Browse Source
This commit is contained in:
Ralf Becker 2011-08-16 11:45:51 +00:00
parent 709ecc35d7
commit 5ca774e85a
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
phpgwapi/inc/class.html.inc.php
View File

@ -1147,7 +1147,7 @@ class html
$url = self::link($url,$vars); $url = self::link($url,$vars);
} }
//echo "<p>html::a_href('".htmlspecialchars($content)."','$url',".print_r($vars,True).") = ".self::link($url,$vars)."</p>"; //echo "<p>html::a_href('".htmlspecialchars($content)."','$url',".print_r($vars,True).") = ".self::link($url,$vars)."</p>";
return '<a href="'.$url.'" '.$options.'>'.$content.'</a>'; return '<a href="'.htmlspecialchars($url).'" '.$options.'>'.$content.'</a>';
} }
/** /**