From: Martin Kletzander <mkletzan@redhat.com>
Date: Mon, 10 Jul 2017 09:47:49 +0000 (+0200)
Subject: docs: Properly quote self uri in search.php
X-Git-Tag: v3.6.0-rc1~282
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=f27dd53402a8e5dd4f1bf0f4f33843e963c0f775;p=thirdparty%2Flibvirt.git

docs: Properly quote self uri in search.php

This removes the classical XSS vulnerability of using unquoted
PHP_SELF.

Reported-by: John Lightsey <john@nixnuts.net>
Signed-off-by: Martin Kletzander <mkletzan@redhat.com>
---

diff --git a/docs/search.php.code.in b/docs/search.php.code.in
index c7511c3782..3c66f94ca5 100644
--- a/docs/search.php.code.in
+++ b/docs/search.php.code.in
@@ -12,7 +12,7 @@
     $querystr = htmlspecialchars($query, ENT_QUOTES, 'UTF-8');
 ?>
 
-<form action="<?php echo $_SERVER['PHP_SELF'], "?query=", rawurlencode($query) ?>"
+<form action="<?php echo htmlspecialchars($_SERVER['PHP_SELF'], ENT_QUOTES, 'UTF-8'), "?query=", rawurlencode($query) ?>"
       enctype="application/x-www-form-urlencoded" method="get">
   <input name="query" type="text" size="50" value="<?php echo $querystr ?>"/>
   <select name="scope">