mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-10-22 14:05:37 +02:00
FIX Escape the redirect URL before outputting
Signed-off-by: Stephen Shkardoon <stephen@silverstripe.com>
This commit is contained in:
parent
21f462a77b
commit
ff9d40a60d
@ -213,7 +213,7 @@ class SS_HTTPResponse {
|
|||||||
}
|
}
|
||||||
|
|
||||||
if(in_array($this->statusCode, self::$redirect_codes) && headers_sent($file, $line)) {
|
if(in_array($this->statusCode, self::$redirect_codes) && headers_sent($file, $line)) {
|
||||||
$url = $this->headers['Location'];
|
$url = Convert::raw2htmlatt($this->headers['Location']);
|
||||||
echo
|
echo
|
||||||
"<p>Redirecting to <a href=\"$url\" title=\"Click this link if your browser does not redirect you\">"
|
"<p>Redirecting to <a href=\"$url\" title=\"Click this link if your browser does not redirect you\">"
|
||||||
. "$url... (output started on $file, line $line)</a></p>
|
. "$url... (output started on $file, line $line)</a></p>
|
||||||
|
Loading…
Reference in New Issue
Block a user