diff options
-rw-r--r-- | mod/search/search_hooks.php | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/mod/search/search_hooks.php b/mod/search/search_hooks.php index 95ef3fc85..60cb1e8c4 100644 --- a/mod/search/search_hooks.php +++ b/mod/search/search_hooks.php @@ -164,7 +164,8 @@ function search_users_hook($hook, $type, $value, $params) { function search_tags_hook($hook, $type, $value, $params) { global $CONFIG; - $query = $params['query']; + // @todo will need to split this up to support searching multiple tags at once. + $query = santitise_string($params['query']); $params['metadata_name_value_pair'] = array ('name' => 'tags', 'value' => $query, 'case_sensitive' => FALSE); $entities = elgg_get_entities_from_metadata($params); |