From cbde3f032de0f02fb28a5502a32c30626119716e Mon Sep 17 00:00:00 2001 From: Derek Jones Date: Thu, 14 Aug 2008 22:13:05 +0000 Subject: changed entity standardization to require at least two characters after an ampersand before forcing a semi-colon --- system/libraries/Input.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'system') diff --git a/system/libraries/Input.php b/system/libraries/Input.php index 24c6c1967..ff1dd9b15 100644 --- a/system/libraries/Input.php +++ b/system/libraries/Input.php @@ -547,7 +547,7 @@ class CI_Input { * the conversion of entities to ASCII later. * */ - $str = preg_replace('#(&\#?[0-9a-z]+)[\x00-\x20]*;?#i', "\\1;", $str); + $str = preg_replace('#(&\#?[0-9a-z]{2,})[\x00-\x20]*;?#i', "\\1;", $str); /* * Validate UTF16 two byte encoding (x00) -- cgit v1.2.3-24-g4f1b