diff options
| author | cweiske <cweiske@b3834d28-1941-0410-a4f8-b48e95affb8f> | 2009-10-28 22:31:15 +0000 |
|---|---|---|
| committer | cweiske <cweiske@b3834d28-1941-0410-a4f8-b48e95affb8f> | 2009-10-28 22:31:15 +0000 |
| commit | 483e9f0747e030fea5dda3c8471dd59880f45718 (patch) | |
| tree | 7027bdab663368045a0d18152f0be46353769a20 | |
| parent | cadcca8d6a30da90b76d827bb3c293ee918312eb (diff) | |
| download | semanticscuttle-483e9f0747e030fea5dda3c8471dd59880f45718.tar.gz semanticscuttle-483e9f0747e030fea5dda3c8471dd59880f45718.tar.bz2 | |
loosen strictness of sorting xss fix a bit - did not work anymore
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@462 b3834d28-1941-0410-a4f8-b48e95affb8f
| -rw-r--r-- | src/SemanticScuttle/functions.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/src/SemanticScuttle/functions.php b/src/SemanticScuttle/functions.php index 145600a..d21a094 100644 --- a/src/SemanticScuttle/functions.php +++ b/src/SemanticScuttle/functions.php @@ -49,7 +49,7 @@ function getSortOrder($override = NULL) { global $defaultOrderBy; if (isset($_GET['sort'])) { - return preg_replace('/[^a-z]/', '', $_GET['sort']); + return preg_replace('/[^a-z_]/', '', $_GET['sort']); } else if (isset($override)) { return $override; } else { |