From caa3b7a299b119cf7891ea6f4f7bf3a5ba470b6e Mon Sep 17 00:00:00 2001
From: Christian Schneider
Date: Fri, 9 Nov 2007 16:55:02 +0000
Subject: No need to untaint base in U() so far

---
 it_html.class | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/it_html.class b/it_html.class
index 08904a8..b44dd09 100644
--- a/it_html.class
+++ b/it_html.class
@@ -436,7 +436,7 @@ function u(/* ... */)
 	list($base, $params) = it_html::_parse_args($args);
 
 	if (!isset($base))
-		it_untaint($base = $_SERVER['PHP_SELF']);
+		$base = $_SERVER['PHP_SELF'];
 
 	$base = preg_replace('|\0|', '', $base);
 	$base = preg_replace('|[^\w.+!*(),:?@&=/~$-]|e', 'urlencode("$0")', $base);
-- 
cgit v1.2.3