[SS-2016-007] FIX Encode user supplied URL for embeding into page

This commit is contained in:
Daniel Hensby 2016-05-03 12:13:01 +01:00 committed by Damian Mooyman
parent b0ba2015d9
commit 41be95c95a

View File

@ -23,7 +23,7 @@ class VersionedRequestFilter implements RequestFilter {
'You must log in with your CMS password in order to view the draft or archived content. '. 'You must log in with your CMS password in order to view the draft or archived content. '.
'<a href="%s">Click here to go back to the published site.</a>' '<a href="%s">Click here to go back to the published site.</a>'
), ),
Controller::join_links(Director::baseURL(), $request->getURL(), "?stage=Live") Convert::raw2xml(Controller::join_links(Director::baseURL(), $request->getURL(), "?stage=Live"))
); );
// Force output since RequestFilter::preRequest doesn't support response overriding // Force output since RequestFilter::preRequest doesn't support response overriding