diff options
| author | Arthur Schiwon <blizzz@arthur-schiwon.de> | 2011-08-25 13:51:48 +0200 |
|---|---|---|
| committer | Arthur Schiwon <blizzz@arthur-schiwon.de> | 2011-08-25 13:51:48 +0200 |
| commit | e6bdd256675f86cb3335f0491a3b41b7f4bf90fd (patch) | |
| tree | dcbb414675cf8f92003f1aab8713c6fb41619e27 /apps/bookmarks/ajax | |
| parent | 097260607255ebe10aae7f64a53a5f7faabe7c1d (diff) | |
| download | nextcloud-server-e6bdd256675f86cb3335f0491a3b41b7f4bf90fd.tar.gz nextcloud-server-e6bdd256675f86cb3335f0491a3b41b7f4bf90fd.zip | |
fix: links with parameters get cut off at &
Diffstat (limited to 'apps/bookmarks/ajax')
| -rw-r--r-- | apps/bookmarks/ajax/addBookmark.php | 6 | ||||
| -rw-r--r-- | apps/bookmarks/ajax/delBookmark.php | 2 | ||||
| -rw-r--r-- | apps/bookmarks/ajax/getMeta.php | 2 | ||||
| -rw-r--r-- | apps/bookmarks/ajax/recordClick.php | 2 | ||||
| -rw-r--r-- | apps/bookmarks/ajax/updateList.php | 2 |
5 files changed, 7 insertions, 7 deletions
diff --git a/apps/bookmarks/ajax/addBookmark.php b/apps/bookmarks/ajax/addBookmark.php index d066b0b32ff..78913f7a132 100644 --- a/apps/bookmarks/ajax/addBookmark.php +++ b/apps/bookmarks/ajax/addBookmark.php @@ -51,9 +51,9 @@ $query = OC_DB::prepare(" $params=array( - urldecode($_GET["url"]), - urldecode($_GET["title"]), - urldecode($_GET["description"]), + htmlspecialchars_decode($_GET["url"]), + htmlspecialchars_decode($_GET["title"]), + htmlspecialchars_decode($_GET["description"]), OC_User::getUser() ); $query->execute($params); diff --git a/apps/bookmarks/ajax/delBookmark.php b/apps/bookmarks/ajax/delBookmark.php index 99a618a7d14..bf1611fe5c1 100644 --- a/apps/bookmarks/ajax/delBookmark.php +++ b/apps/bookmarks/ajax/delBookmark.php @@ -36,7 +36,7 @@ if( !OC_User::isLoggedIn()){ } $params=array( - urldecode($_GET["url"]), + htmlspecialchars_decode($_GET["url"]), OC_User::getUser() ); diff --git a/apps/bookmarks/ajax/getMeta.php b/apps/bookmarks/ajax/getMeta.php index dadf23afd91..e9fe0d684dc 100644 --- a/apps/bookmarks/ajax/getMeta.php +++ b/apps/bookmarks/ajax/getMeta.php @@ -38,7 +38,7 @@ if( !OC_User::isLoggedIn()){ // $metadata = array(); require '../bookmarksHelper.php'; +$metadata = getURLMetadata(htmlspecialchars_decode($_GET["url"])); -$metadata = getURLMetadata(urldecode($_GET["url"])); echo json_encode( array( 'status' => 'success', 'data' => $metadata)); diff --git a/apps/bookmarks/ajax/recordClick.php b/apps/bookmarks/ajax/recordClick.php index 4dcb0b4a0df..116daea8bbb 100644 --- a/apps/bookmarks/ajax/recordClick.php +++ b/apps/bookmarks/ajax/recordClick.php @@ -40,7 +40,7 @@ $query = OC_DB::prepare(" AND url LIKE ? "); -$params=array(OC_User::getUser(), urldecode($_GET["url"])); +$params=array(OC_User::getUser(), htmlspecialchars_decode($_GET["url"])); $bookmarks = $query->execute($params); header( "HTTP/1.1 204 No Content" ); diff --git a/apps/bookmarks/ajax/updateList.php b/apps/bookmarks/ajax/updateList.php index 61983cc0f5b..ceecc5b7efa 100644 --- a/apps/bookmarks/ajax/updateList.php +++ b/apps/bookmarks/ajax/updateList.php @@ -39,7 +39,7 @@ $params=array(OC_User::getUser()); $CONFIG_DBTYPE = OC_Config::getValue( 'dbtype', 'sqlite' ); //Filter for tag? -$filterTag = isset($_GET['tag']) ? '%' . urldecode($_GET['tag']) . '%' : false; +$filterTag = isset($_GET['tag']) ? '%' . htmlspecialchars_decode($_GET['tag']) . '%' : false; if($filterTag){ $sqlFilterTag = 'HAVING tags LIKE ?'; $params[] = $filterTag; |