Merge pull request #53 from cash/reflected_xss_fixes

Fixes #3544 Reflected xss fixes
author: Cash Costello <cash.costello@gmail.com> 2011-07-04 09:15:11 -0700
committer: Cash Costello <cash.costello@gmail.com> 2011-07-04 09:15:11 -0700
commit: 440c94c74f929344c5b755e2607c8426d4de08b3 (patch)
tree: aa042845b8e241fdba5b9bd8ebeab66631437b4a /mod/messages
parent: de111da23258cd2b513c8f4ab84712ee50272b23 (diff)
parent: 3beedd84a7dbcf7a17a75248473302320653d231 (diff)
download: elgg-440c94c74f929344c5b755e2607c8426d4de08b3.tar.gz
elgg-440c94c74f929344c5b755e2607c8426d4de08b3.tar.bz2
1 files changed, 1 insertions, 1 deletions
diff --git a/mod/messages/pages/messages/send.php b/mod/messages/pages/messages/send.php
index 02d430df7..1b821d185 100644
--- a/mod/messages/pages/messages/send.php
+++ b/mod/messages/pages/messages/send.php
@@ -14,7 +14,7 @@ $title = elgg_echo('messages:add');
 
 elgg_push_breadcrumb($title);
 
-$params = messages_prepare_form_vars(get_input('send_to'));
+$params = messages_prepare_form_vars((int)get_input('send_to'));
 $params['friends'] = $page_owner->getFriends();
 $content = elgg_view_form('messages/send', array(), $params);
author	Cash Costello <cash.costello@gmail.com>	2011-07-04 09:15:11 -0700
committer	Cash Costello <cash.costello@gmail.com>	2011-07-04 09:15:11 -0700
commit	440c94c74f929344c5b755e2607c8426d4de08b3 (patch)
tree	aa042845b8e241fdba5b9bd8ebeab66631437b4a /mod/messages
parent	de111da23258cd2b513c8f4ab84712ee50272b23 (diff)
parent	3beedd84a7dbcf7a17a75248473302320653d231 (diff)
download	elgg-440c94c74f929344c5b755e2607c8426d4de08b3.tar.gz elgg-440c94c74f929344c5b755e2607c8426d4de08b3.tar.bz2