From b3023493f4be1c84412cbcce9273da279655ee6e Mon Sep 17 00:00:00 2001
From: Bharat Mediratta <bharat@menalto.com>
Date: Sat, 2 Jan 2010 14:00:00 -0800
Subject: Clean the G2 base url so that we can't leak XSS vulnerabilities that
 way (highly unlikely, but now it's impossible).

---
 modules/g2_import/views/admin_g2_import.html.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'modules')

diff --git a/modules/g2_import/views/admin_g2_import.html.php b/modules/g2_import/views/admin_g2_import.html.php
index ddd7c26f..0875e7f7 100644
--- a/modules/g2_import/views/admin_g2_import.html.php
+++ b/modules/g2_import/views/admin_g2_import.html.php
@@ -102,7 +102,7 @@
       <code>
         &lt;IfModule mod_rewrite.c&gt;<br/>
           RewriteEngine On<br/>
-          RewriteBase <?= g2_import::$g2_base_url ?><br/>
+          RewriteBase <?= html::clean(g2_import::$g2_base_url) ?><br/>
           RewriteRule ^(.*)$ <?= url::site("g2/map?path=\$1") ?>   [QSA,L]<br/>
         &lt;/IfModule&gt;<br/>
       </code>
-- 
cgit v1.2.3