diff options
Diffstat (limited to 'includes/bootstrap.inc')
| -rw-r--r-- | includes/bootstrap.inc | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/includes/bootstrap.inc b/includes/bootstrap.inc index a486d0c03..127f31f6b 100644 --- a/includes/bootstrap.inc +++ b/includes/bootstrap.inc @@ -1085,6 +1085,8 @@ function request_uri() { $uri = $_SERVER['SCRIPT_NAME']; } } + // Prevent multiple slashes to avoid cross site requests via the Form API. + $uri = '/' . ltrim($uri, '/'); return $uri; } |