diff options
Diffstat (limited to 'apps/bookmarks/ajax/updateList.php')
| -rw-r--r-- | apps/bookmarks/ajax/updateList.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/apps/bookmarks/ajax/updateList.php b/apps/bookmarks/ajax/updateList.php index 61983cc0f5b..ceecc5b7efa 100644 --- a/apps/bookmarks/ajax/updateList.php +++ b/apps/bookmarks/ajax/updateList.php @@ -39,7 +39,7 @@ $params=array(OC_User::getUser()); $CONFIG_DBTYPE = OC_Config::getValue( 'dbtype', 'sqlite' ); //Filter for tag? -$filterTag = isset($_GET['tag']) ? '%' . urldecode($_GET['tag']) . '%' : false; +$filterTag = isset($_GET['tag']) ? '%' . htmlspecialchars_decode($_GET['tag']) . '%' : false; if($filterTag){ $sqlFilterTag = 'HAVING tags LIKE ?'; $params[] = $filterTag; |