Use sanitizeHTML instead of stripslashes + htmlspecialchars

author: Lukas Reschke <lukas@statuscode.ch> 2013-02-10 14:03:40 +0100
committer: Lukas Reschke <lukas@statuscode.ch> 2013-02-10 14:03:40 +0100
commit: 1b10032556c6188fc5310168083042e07e8c8b59 (patch)
tree: f73adecf0b0cef1dee6b0532a45ca35da562b6f6 /lib/helper.php
parent: 1c56539c01c162676a05d90e3598b7d68394ac73 (diff)
download: nextcloud-server-1b10032556c6188fc5310168083042e07e8c8b59.tar.gz
nextcloud-server-1b10032556c6188fc5310168083042e07e8c8b59.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/helper.php b/lib/helper.php
index a0fbdd10394..124ab9da96b 100644
--- a/lib/helper.php
+++ b/lib/helper.php
@@ -437,7 +437,7 @@ class OC_Helper {
 	public static function init_var($s, $d="") {
 		$r = $d;
 		if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s]))
-			$r = stripslashes(htmlspecialchars($_REQUEST[$s]));
+			$r = OC_Util::sanitizeHTML($_REQUEST[$s]);
 
 		return $r;
 	}
author	Lukas Reschke <lukas@statuscode.ch>	2013-02-10 14:03:40 +0100
committer	Lukas Reschke <lukas@statuscode.ch>	2013-02-10 14:03:40 +0100
commit	1b10032556c6188fc5310168083042e07e8c8b59 (patch)
tree	f73adecf0b0cef1dee6b0532a45ca35da562b6f6 /lib/helper.php
parent	1c56539c01c162676a05d90e3598b7d68394ac73 (diff)
download	nextcloud-server-1b10032556c6188fc5310168083042e07e8c8b59.tar.gz nextcloud-server-1b10032556c6188fc5310168083042e07e8c8b59.zip