From 945784173ea4dba58da528bebc53b3a24b82928f Mon Sep 17 00:00:00 2001 From: "Documentopia.com" Date: Tue, 6 May 2014 16:26:26 -0400 Subject: xss_clean is not protecting GET requests that &item=/startwithslash /webacd.do?isurlact=true&entactname=/webacd.do becomes /webacd.do?isurlact=true&entactname;=/webacd.do This commit adds / to the regex to it will escape those GET requests related to issue #3030 --- system/core/Security.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) mode change 100644 => 100755 system/core/Security.php (limited to 'system/core') diff --git a/system/core/Security.php b/system/core/Security.php old mode 100644 new mode 100755 index 17ba3bcd8..c9258b063 --- a/system/core/Security.php +++ b/system/core/Security.php @@ -862,7 +862,7 @@ class CI_Security { */ // 901119URL5918AMP18930PROTECT8198 - $str = preg_replace('|\&([a-z\_0-9\-]+)\=([a-z\_0-9\-]+)|i', $this->xss_hash().'\\1=\\2', $str); + $str = preg_replace('|\&([a-z\_0-9\-]+)\=([a-z\_0-9\-/]+)|i', $this->xss_hash().'\\1=\\2', $str); /* * Validate standard character entities -- cgit v1.2.3-24-g4f1b