diff options
author | Urban Müller | 2021-11-01 15:44:42 +0100 |
---|---|---|
committer | Urban Müller | 2021-11-01 15:44:42 +0100 |
commit | 3f80555170d11f7c8f6f976e07f65ca9af55118b (patch) | |
tree | 66155c8b4905839e2a3af72239d11b741cb23d61 | |
parent | 381e9cac09a6c393009be1033a908da9860e4e50 (diff) | |
download | itools-3f80555170d11f7c8f6f976e07f65ca9af55118b.tar.gz itools-3f80555170d11f7c8f6f976e07f65ca9af55118b.tar.bz2 itools-3f80555170d11f7c8f6f976e07f65ca9af55118b.zip |
avoid false positives when U() removes args without value
-rw-r--r-- | it_url.class | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/it_url.class b/it_url.class index 6a0b126..540fd46 100644 --- a/it_url.class +++ b/it_url.class @@ -830,7 +830,7 @@ static function redirect($url = null, $type = "temporary") $url = preg_replace("/[\r\n].*/", '', it_url::absolute($url)); # Security: cut after CR/LF - if (!$_POST && $url == it_url::absolute(U($_GET))) + if (!$_POST && $url == it_url::absolute($_SERVER['REQUEST_URI'])) it::error("redirect to self: $url"); if (EDC('noredir')) |