From 677c4d7722473de9a9d32c03fd6be5b2f30e10c2 Mon Sep 17 00:00:00 2001
From: marcus <marcus@36083f99-b078-4883-b0ff-0f9b5a30f544>
Date: Fri, 1 Aug 2008 11:15:59 +0000
Subject: Fixes #194

git-svn-id: https://code.elgg.org/elgg/trunk@1646 36083f99-b078-4883-b0ff-0f9b5a30f544
---
 engine/lib/input.php | 18 +++++++++++-------
 1 file changed, 11 insertions(+), 7 deletions(-)

(limited to 'engine/lib')

diff --git a/engine/lib/input.php b/engine/lib/input.php
index e6929f6c0..e200f8866 100644
--- a/engine/lib/input.php
+++ b/engine/lib/input.php
@@ -15,9 +15,10 @@
 	 * Get some input from variables passed on the GET or POST line.
 	 * 
 	 * @param $variable string The variable we want to return.
-	 * @param $default mixed A default value for the variable if it is not found.
+	 * @param $default mixed A default value for the variable if it is not found.
+	 * @param $filter_result If true then the result is filtered for bad tags.
 	 */
-	function get_input($variable, $default = "")
+	function get_input($variable, $default = "", $filter_result = true)
 	{
 
 		if (isset($_REQUEST[$variable])) {
@@ -27,12 +28,15 @@
 			} else {
 				$var = trim($_REQUEST[$variable]);
 			}
-			
-			global $CONFIG;
-			if (@include_once(dirname(dirname(dirname(__FILE__)))) . "/vendors/kses/kses.php") {
-				$var = kses($var, $CONFIG->allowedtags);
+			
+			if ($filter_result)
+			{
+				global $CONFIG;
+				if (@include_once(dirname(dirname(dirname(__FILE__)))) . "/vendors/kses/kses.php") {
+					$var = kses($var, $CONFIG->allowedtags);
+				}
 			}
-			
+				
 			return $var;
 			
 		}
-- 
cgit v1.2.3