Edit report at http://bugs.php.net/bug.php?id=54486&edit=1
ID: 54486 Updated by: dtajchre...@php.net Reported by: vittorisimone at gmail dot com Summary: QUERY_STRING -Status: Open +Status: Bogus Type: Feature/Change Request Package: *General Issues Operating System: windows xp PHP Version: Irrelevant Block user comment: N Private report: N New Comment: php.net/htmlspecialchars php.net/htmlentities Previous Comments: ------------------------------------------------------------------------ [2011-04-07 15:36:02] vittorisimone at gmail dot com Description: ------------ Hi, there's a problem with $_SERVER['QUERY_STRING']; this returns a string with unencoded ampersands; that's not good, because the "&" is used to create entities and may cause bugs. I need to escape all instances of '&' into '&', according to W3C standards. Hope this will be fixed soon. Test script: --------------- <?php echo "?". $_SERVER['QUERY_STRING'] . "&copy=".$testi[0]; ?> ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/bug.php?id=54486&edit=1
