From 3e475991f9747cbd29b5c3523afeae3390347186 Mon Sep 17 00:00:00 2001 From: skodak Date: Tue, 1 Jan 2008 17:23:05 +0000 Subject: [PATCH] MDL-12793 PARAM_HOST incorrect cleaning; merged from MOODLE_19_STABLE --- lib/moodlelib.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lib/moodlelib.php b/lib/moodlelib.php index 33f89bf6e7..c0ed3c321b 100644 --- a/lib/moodlelib.php +++ b/lib/moodlelib.php @@ -452,7 +452,7 @@ function clean_param($param, $type) { return ereg_replace('/(\./)+', '/', $param); case PARAM_HOST: // allow FQDN or IPv4 dotted quad - preg_replace('/[^\.\d\w-]/','', $param ); // only allowed chars + $param = preg_replace('/[^\.\d\w-]/','', $param ); // only allowed chars // match ipv4 dotted quad if (preg_match('/(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})/',$param, $match)){ // confirm values are ok -- 2.39.5