9673.diff

Administrator Admin, 2008-10-30 09:24

Download (1.19 KB)

View differences:

typo3/sysext/felogin/pi1/class.tx_felogin_pi1.php (working copy)
218 218

  
219 219
		if ($this->redirectUrl) {
220 220
				// use redirectUrl for action tag because of possible access restricted pages
221
			$markerArray['###ACTION_URI###'] = $this->redirectUrl;
221
			$markerArray['###ACTION_URI###'] = htmlspecialchars($this->redirectUrl);
222 222
			$this->redirectUrl = '';
223 223
		}
224 224
		return $this->cObj->substituteMarkerArrayCached($subpart, $markerArray, $subpartArray, $linkpartArray);
......
300 300
		$markerArray['###PASSWORD_LABEL###'] = $this->pi_getLL('password', '', 1);
301 301
		$markerArray['###STORAGE_PID###'] = $this->spid;
302 302
		$markerArray['###USERNAME_LABEL###'] = $this->pi_getLL('username', '', 1);
303
		$markerArray['###REDIRECT_URL###'] = $this->redirectUrl;
303
		$markerArray['###REDIRECT_URL###'] = htmlspecialchars($this->redirectUrl);
304 304
		$markerArray = array_merge($markerArray, $this->getUserFieldMarkers());
305 305

  
306 306
		if ($this->flexFormValue('showForgotPassword','sDEF') || $this->conf['showForgotPasswordLink']) {