diff options
| author | Chris Smith <chris.eureka@jalakai.co.uk> | 2009-01-19 07:21:24 +0100 |
|---|---|---|
| committer | Chris Smith <chris.eureka@jalakai.co.uk> | 2009-01-19 07:21:24 +0100 |
| commit | 32ee58308d5bb11c322ca6bfc3b56e66364230af (patch) | |
| tree | defb4de195e392f871aca99efeca2d219c0bb445 /inc/fulltext.php | |
| parent | b303b92c45ac51a83bfe3eb519e8c7cedec64781 (diff) | |
| download | rpg-32ee58308d5bb11c322ca6bfc3b56e66364230af.tar.gz rpg-32ee58308d5bb11c322ca6bfc3b56e66364230af.tar.bz2 | |
FS#1505, correct an issue where page name search results could include links to pages to which the user had no access
darcs-hash:20090119062124-f07c6-5d761a76a50c6c9bcc124fa89feb2fb7b0a9a9b5.gz
Diffstat (limited to 'inc/fulltext.php')
| -rw-r--r-- | inc/fulltext.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/inc/fulltext.php b/inc/fulltext.php index 74195c534..5399989fa 100644 --- a/inc/fulltext.php +++ b/inc/fulltext.php @@ -254,7 +254,7 @@ function _ft_pageLookup(&$data){ // check ACL permissions foreach(array_keys($pages) as $idx){ - if(auth_quickaclcheck($pages[$idx]) < AUTH_READ){ + if(auth_quickaclcheck(trim($pages[$idx])) < AUTH_READ){ unset($pages[$idx]); } } |