cleaning REQUEST_URI for good measure

This commit is contained in:
El RIDO 2016-07-18 15:21:32 +02:00
parent e1d6db88a1
commit e7dde4d212

View file

@ -176,7 +176,8 @@ class privatebin
$this->_conf = new configuration;
$this->_model = new model($this->_conf);
$this->_request = new request;
$this->_urlbase = array_key_exists('REQUEST_URI', $_SERVER) ? $_SERVER['REQUEST_URI'] : '/';
$this->_urlbase = array_key_exists('REQUEST_URI', $_SERVER) ?
htmlspecialchars($_SERVER['REQUEST_URI']) : '/';
// set default language
$lang = $this->_conf->getKey('languagedefault');