Refs #1086: Fixes specific issues mentioned pending KSES fix / replacement

git-svn-id: https://code.elgg.org/elgg/trunk@3369 36083f99-b078-4883-b0ff-0f9b5a30f544
author: marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544> 2009-06-30 16:43:41 +0000
committer: marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544> 2009-06-30 16:43:41 +0000
commit: dc4e11800a15fa47235373cfbe625199fd4bd7ac (patch)
tree: 46e2278779959a3eb8d1ff94e137e48dd7d2e706 /search/index.php
parent: 0af3ab738efb2fe6ea14d33a7a8261cfdb60efb7 (diff)
download: elgg-dc4e11800a15fa47235373cfbe625199fd4bd7ac.tar.gz
elgg-dc4e11800a15fa47235373cfbe625199fd4bd7ac.tar.bz2
1 files changed, 5 insertions, 5 deletions
diff --git a/search/index.php b/search/index.php
index 8cadcdcf6..038d494fb 100644
--- a/search/index.php
+++ b/search/index.php
@@ -19,15 +19,15 @@
 		set_context('search');
 		
 	// Get input
-		$tag = get_input('tag');
-		$subtype = get_input('subtype');
-		if (!$objecttype = get_input('object')) {
+		$tag = stripslashes(get_input('tag'));
+		$subtype = stripslashes(get_input('subtype'));
+		if (!$objecttype = stripslashes(get_input('object'))) {
 			$objecttype = "";
 		}
-		if (!$md_type = get_input('tagtype')) {
+		if (!$md_type = stripslashes(get_input('tagtype'))) {
 			$md_type = "";			
 		}
-		$owner_guid = get_input('owner_guid',0);
+		$owner_guid = (int)get_input('owner_guid',0);
 		if (substr_count($owner_guid,',')) {
 			$owner_guid_array = explode(",",$owner_guid);
 		} else {
author	marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>	2009-06-30 16:43:41 +0000
committer	marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>	2009-06-30 16:43:41 +0000
commit	dc4e11800a15fa47235373cfbe625199fd4bd7ac (patch)
tree	46e2278779959a3eb8d1ff94e137e48dd7d2e706 /search/index.php
parent	0af3ab738efb2fe6ea14d33a7a8261cfdb60efb7 (diff)
download	elgg-dc4e11800a15fa47235373cfbe625199fd4bd7ac.tar.gz elgg-dc4e11800a15fa47235373cfbe625199fd4bd7ac.tar.bz2