Bug 480858: Change Columns fails to escape search name when re-running saved search...

diff --git a/colchange.cgi b/colchange.cgi
index 3dbd93dca069633e0ae93f28bd472e1c2ee06475..5e84dcc2cb7676436a5bbbe446e073b2b66d15d8 100755 (executable)
--- a/colchange.cgi
+++ b/colchange.cgi
@@ -28,6 +28,7 @@ use lib qw(. lib);
 
 use Bugzilla;
 use Bugzilla::Constants;
+use Bugzilla::Util;
 use Bugzilla::CGI;
 use Bugzilla::Search::Saved;
 use Bugzilla::Error;
@@ -187,7 +188,7 @@ if (defined $cgi->param('query_based_on')) {
     # Only allow users to edit their own queries.
     if ($search && $search->user->id == Bugzilla->user->id) {
         $vars->{'saved_search'} = $search;
-        $vars->{'buffer'} = "cmdtype=runnamed&namedcmd=".$search->name;
+        $vars->{'buffer'} = "cmdtype=runnamed&namedcmd=". url_quote($search->name);
 
         my $params = new Bugzilla::CGI($search->url);
         if ($params->param('columnlist')) {