Merge branch 'master' into fixing-1424-master

author: Thomas Mueller <thomas.mueller@tmit.eu> 2013-02-11 21:42:27 +0100
committer: Thomas Mueller <thomas.mueller@tmit.eu> 2013-02-11 21:42:27 +0100
commit: 037fcde1334d7b4d2bdeaaad0a71adc692b27ff8 (patch)
tree: 6f10b1a8d54cfea8cc3adf343de0bbf0f115f3d2 /lib/helper.php
parent: f58ed7a509da54fcd29e21dc6fc75528822157a4 (diff)
parent: 58e57151e51a02788377f761b183c15cd03b0ef0 (diff)
download: nextcloud-server-037fcde1334d7b4d2bdeaaad0a71adc692b27ff8.tar.gz
nextcloud-server-037fcde1334d7b4d2bdeaaad0a71adc692b27ff8.zip
1 files changed, 3 insertions, 2 deletions
diff --git a/lib/helper.php b/lib/helper.php
index a0fbdd10394..2713ffed451 100644
--- a/lib/helper.php
+++ b/lib/helper.php
@@ -436,8 +436,9 @@ class OC_Helper {
 	//FIXME: should also check for value validation (i.e. the email is an email).
 	public static function init_var($s, $d="") {
 		$r = $d;
-		if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s]))
-			$r = stripslashes(htmlspecialchars($_REQUEST[$s]));
+		if(isset($_REQUEST[$s]) && !empty($_REQUEST[$s])) {
+			$r = OC_Util::sanitizeHTML($_REQUEST[$s]);
+		}
 
 		return $r;
 	}
author	Thomas Mueller <thomas.mueller@tmit.eu>	2013-02-11 21:42:27 +0100
committer	Thomas Mueller <thomas.mueller@tmit.eu>	2013-02-11 21:42:27 +0100
commit	037fcde1334d7b4d2bdeaaad0a71adc692b27ff8 (patch)
tree	6f10b1a8d54cfea8cc3adf343de0bbf0f115f3d2 /lib/helper.php
parent	f58ed7a509da54fcd29e21dc6fc75528822157a4 (diff)
parent	58e57151e51a02788377f761b183c15cd03b0ef0 (diff)
download	nextcloud-server-037fcde1334d7b4d2bdeaaad0a71adc692b27ff8.tar.gz nextcloud-server-037fcde1334d7b4d2bdeaaad0a71adc692b27ff8.zip