From 483e9f0747e030fea5dda3c8471dd59880f45718 Mon Sep 17 00:00:00 2001 From: cweiske Date: Wed, 28 Oct 2009 22:31:15 +0000 Subject: [PATCH] loosen strictness of sorting xss fix a bit - did not work anymore git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@462 b3834d28-1941-0410-a4f8-b48e95affb8f --- src/SemanticScuttle/functions.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/SemanticScuttle/functions.php b/src/SemanticScuttle/functions.php index 145600a..d21a094 100644 --- a/src/SemanticScuttle/functions.php +++ b/src/SemanticScuttle/functions.php @@ -49,7 +49,7 @@ function getSortOrder($override = NULL) { global $defaultOrderBy; if (isset($_GET['sort'])) { - return preg_replace('/[^a-z]/', '', $_GET['sort']); + return preg_replace('/[^a-z_]/', '', $_GET['sort']); } else if (isset($override)) { return $override; } else {