From 945784173ea4dba58da528bebc53b3a24b82928f Mon Sep 17 00:00:00 2001
From: "Documentopia.com" <coding@documentopia.com>
Date: Tue, 6 May 2014 16:26:26 -0400
Subject: xss_clean is not protecting GET requests that &item=/startwithslash

/webacd.do?isurlact=true&entactname=/webacd.do
becomes
/webacd.do?isurlact=true&entactname;=/webacd.do

This commit adds / to the regex to it will escape those GET requests

related to issue #3030
---
 system/core/Security.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 mode change 100644 => 100755 system/core/Security.php

(limited to 'system')

diff --git a/system/core/Security.php b/system/core/Security.php
old mode 100644
new mode 100755
index 17ba3bcd8..c9258b063
--- a/system/core/Security.php
+++ b/system/core/Security.php
@@ -862,7 +862,7 @@ class CI_Security {
 		 */
 
 		// 901119URL5918AMP18930PROTECT8198
-		$str = preg_replace('|\&([a-z\_0-9\-]+)\=([a-z\_0-9\-]+)|i', $this->xss_hash().'\\1=\\2', $str);
+		$str = preg_replace('|\&([a-z\_0-9\-]+)\=([a-z\_0-9\-/]+)|i', $this->xss_hash().'\\1=\\2', $str);
 
 		/*
 		 * Validate standard character entities
-- 
cgit v1.2.3-24-g4f1b