Commit 3e9aabe0 authored by Dries's avatar Dries

- Moved some CXX checks to a centralized place; less error-prone.
parent d95499bf
......@@ -413,6 +413,12 @@ function search_type($type = 0, $action = 0, $query = 0, $options = 0) {
function drupal_goto($url) {
/*
** Check the URL to prevent XSS attacks:
*/
$url = check_url($url);
/*
** Translate & to simply &
*/
......
......@@ -622,7 +622,7 @@ function user_login($edit = array(), $msg = "") {
** Redirect the user to the page he logged on from.
*/
drupal_goto(check_url($edit["destination"]));
drupal_goto($edit["destination"]);
}
else {
if (!$error) {
......
......@@ -622,7 +622,7 @@ function user_login($edit = array(), $msg = "") {
** Redirect the user to the page he logged on from.
*/
drupal_goto(check_url($edit["destination"]));
drupal_goto($edit["destination"]);
}
else {
if (!$error) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment