Properly escape input URL.

6771c3f3 · jcnventura · 91497c1b · 6771c3f3 · 6771c3f3 · 6771c3f3
Commit 6771c3f3 authored Apr 04, 2012 by jcnventura
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

print.pages.inc print.pages.inc +1 -1

print_mail/print_mail.inc print_mail/print_mail.inc +1 -1

print_pdf/print_pdf.pages.inc print_pdf/print_pdf.pages.inc +1 -1

No files found.
--- a/print.pages.inc
+++ b/print.pages.inc
@@ -20,7 +20,7 @@ $_print_urls = PRINT_URLS_DEFAULT;
 */
 function print_controller_html() {
  $args = func_get_args();
-  $path = implode('/', $args);
+  $path = filter_xss(implode('/', $args));
  $cid = isset($_GET['comment']) ? (int)$_GET['comment'] : NULL;

  $print = print_controller($path, $cid, PRINT_HTML_FORMAT);

--- a/print_mail/print_mail.inc
+++ b/print_mail/print_mail.inc
@@ -26,7 +26,7 @@ function print_mail_form($form, &$form_state) {
  // Remove the printmail/ prefix
  $path_arr = explode('/', $_GET['q']);
  unset($path_arr[0]);
-  $path = implode('/', $path_arr);
+  $path = filter_xss(implode('/', $path_arr));
  if (empty($path)) {
    // If no path was provided, let's try to generate a page for the referer
    global $base_url;

--- a/print_pdf/print_pdf.pages.inc
+++ b/print_pdf/print_pdf.pages.inc
@@ -24,7 +24,7 @@ function print_pdf_controller() {
  $GLOBALS['conf']['cache'] = FALSE;

  $args = func_get_args();
-  $path = implode('/', $args);
+  $path = filter_xss(implode('/', $args));
  $cid = isset($_GET['comment']) ? (int)$_GET['comment'] : NULL;

  if (!empty($path)) {