0009673_rev4386.diff

Administrator Admin, 2008-10-30 16:35

Download (1.24 KB)

View differences:

typo3/sysext/felogin/pi1/class.tx_felogin_pi1.php (working copy)
212 212

  
213 213
		if ($this->redirectUrl) {
214 214
				// use redirectUrl for action tag because of possible access restricted pages
215
			$markerArray['###ACTION_URI###'] = $this->redirectUrl;
215
			$markerArray['###ACTION_URI###'] = htmlspecialchars($this->redirectUrl);
216 216
			$this->redirectUrl = '';
217 217
		}
218 218
		return $this->cObj->substituteMarkerArrayCached($subpart, $markerArray, $subpartArray, $linkpartArray);
......
293 293
		$markerArray['###PASSWORD_LABEL###'] = $this->pi_getLL('password', '', 1);
294 294
		$markerArray['###STORAGE_PID###'] = $this->spid;
295 295
		$markerArray['###USERNAME_LABEL###'] = $this->pi_getLL('username', '', 1);
296
		$markerArray['###REDIRECT_URL###'] = $this->redirectUrl;
296
		$markerArray['###REDIRECT_URL###'] = htmlspecialchars($this->redirectUrl);
297 297

  
298 298
		if ($this->flexFormValue('showForgotPassword','sDEF') || $this->conf['showForgotPasswordLink']) {
299 299
			$linkpartArray['###FORGOT_PASSWORD_LINK###'] = explode('|',$this->getPageLink('|',array($this->prefixId.'[forgot]'=>1)));