Author: nextgens
Date: 2008-06-13 03:51:06 +0000 (Fri, 13 Jun 2008)
New Revision: 20280
Modified:
trunk/website/includes/common.inc.php
Log:
website: fix yetAnotherSecurityVulnerability
Modified: trunk/website/includes/common.inc.php
===================================================================
--- trunk/website/includes/common.inc.php 2008-06-12 19:31:56 UTC (rev
20279)
+++ trunk/website/includes/common.inc.php 2008-06-13 03:51:06 UTC (rev
20280)
@@ -2,8 +2,7 @@
if (!isset($_REQUEST["rewritten"])) {
$currentURI = htmlentities($_SERVER['REQUEST_URI']);
- $host = htmlentities($_SERVER['HTTP_HOST']);
- $prefix = "http://".$host;
+ $prefix = "http://freenetproject.org";
if ($c=preg_match_all ("/\\/index\\.php\\?page=[\\/]*([^&]+)/is",
$currentURI, $matches)) {
$page_name = $matches[1][0].".html";
