Use sanitizeHTML instead of strip_tags

author: Lukas Reschke <lukas@statuscode.ch> 2012-08-26 15:41:41 +0200
committer: Lukas Reschke <lukas@statuscode.ch> 2012-08-26 15:41:41 +0200
commit: 726be04e5f047ff9b98b7d84bf4244d1908a3e33 (patch)
tree: 41a7b742dfe9a5c2e2388d2f11ae05297a287301
parent: 39a9a4e73e4584747268f267e20af21f9b0c3fbc (diff)
download: nextcloud-server-726be04e5f047ff9b98b7d84bf4244d1908a3e33.tar.gz
nextcloud-server-726be04e5f047ff9b98b7d84bf4244d1908a3e33.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/apps/impress/player.php b/apps/impress/player.php
index 12497de54c1..cd534757fb4 100755
--- a/apps/impress/player.php
+++ b/apps/impress/player.php
@@ -26,8 +26,8 @@ require_once('lib/impress.php');
 // Check if we are a user
 OCP\User::checkLoggedIn();
 
-$filename = strip_tags($_GET['file']);
-$title = strip_tags($_GET['name']);
+$filename = OCP\Util::sanitizeHTML($_GET['file']);
+$title = OCP\Util::sanitizeHTML($_GET['name']);
 
 if(!OC_Filesystem::file_exists($filename)){
 	header("HTTP/1.0 404 Not Found");
author	Lukas Reschke <lukas@statuscode.ch>	2012-08-26 15:41:41 +0200
committer	Lukas Reschke <lukas@statuscode.ch>	2012-08-26 15:41:41 +0200
commit	726be04e5f047ff9b98b7d84bf4244d1908a3e33 (patch)
tree	41a7b742dfe9a5c2e2388d2f11ae05297a287301
parent	39a9a4e73e4584747268f267e20af21f9b0c3fbc (diff)
download	nextcloud-server-726be04e5f047ff9b98b7d84bf4244d1908a3e33.tar.gz nextcloud-server-726be04e5f047ff9b98b7d84bf4244d1908a3e33.zip