diff options
author | Jason A. Donenfeld <Jason@zx2c4.com> | 2011-11-16 01:11:28 -0500 |
---|---|---|
committer | Jason A. Donenfeld <Jason@zx2c4.com> | 2011-11-16 01:15:43 -0500 |
commit | 6f11e0526e76fb91b151060682cebd5bc491d574 (patch) | |
tree | c4d51832a1c9b2ef9e342fed6c03d20938491e45 /web | |
parent | Make json files refresh sooner. (diff) | |
download | PhotoFloat-6f11e0526e76fb91b151060682cebd5bc491d574.tar.xz PhotoFloat-6f11e0526e76fb91b151060682cebd5bc491d574.zip |
Don't allow header injection.
Diffstat (limited to 'web')
-rw-r--r-- | web/redirect.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/web/redirect.php b/web/redirect.php index ddcd2c9..2a27cb2 100644 --- a/web/redirect.php +++ b/web/redirect.php @@ -15,7 +15,7 @@ function cachePath($path) { return $path; } -$url = $_SERVER["SCRIPT_URL"]; +$url = str_replace("\b", "", str_replace("\r", "", str_replace("\n", "", $_SERVER["SCRIPT_URL"]))); if ($url[strlen($url) - 1] == '/') $url = substr($url, 0, strlen($url) - 1); |