From 3e9aabe05897becc4b0b749832540a49eb77184d Mon Sep 17 00:00:00 2001
From: Dries Buytaert <dries@buytaert.net>
Date: Sat, 14 Jun 2003 07:02:32 +0000
Subject: - Moved some CXX checks to a centralized place; less error-prone.

---
 includes/common.inc | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'includes')

diff --git a/includes/common.inc b/includes/common.inc
index 234309459..1e4c249a7 100644
--- a/includes/common.inc
+++ b/includes/common.inc
@@ -413,6 +413,12 @@ function search_type($type = 0, $action = 0, $query = 0, $options = 0) {
 
 function drupal_goto($url) {
 
+  /*
+  ** Check the URL to prevent XSS attacks:
+  */
+
+  $url = check_url($url);
+
   /*
   ** Translate &amp; to simply &
   */
-- 
cgit v1.2.3