X-Git-Url: https://vcs.fsf.org/?a=blobdiff_plain;f=src%2Fredirect.php;h=077e0a7ed0d50d17af737b3c69d829fcb936fe91;hb=518613c12273fbd5e30e2b9cff9ec703204673c0;hp=516b0427272ffae02b54e4a28c5c8a68c5c1c1dd;hpb=5a545dda36125e9f8978dd42315680cebb68e3f0;p=squirrelmail.git diff --git a/src/redirect.php b/src/redirect.php index 516b0427..077e0a7e 100644 --- a/src/redirect.php +++ b/src/redirect.php @@ -4,7 +4,7 @@ * redirect.php * Derived from webmail.php by Ralf Kraudelt * - * Copyright (c) 1999-2001 The Squirrelmail Development Team + * Copyright (c) 1999-2002 The SquirrelMail Project Team * Licensed under the GNU GPL. For full terms see the file COPYING. * * Prevents users from reposting their form data after a successful logout. @@ -37,6 +37,20 @@ require_once('../functions/plugin.php'); require_once('../functions/constants.php'); require_once('../functions/page_header.php'); +// Remove slashes if PHP added them +if (get_magic_quotes_gpc()) { + global $REQUEST_METHOD; + + if ($REQUEST_METHOD == "POST") { + global $HTTP_POST_VARS; + RemoveSlashes($HTTP_POST_VARS); + } else if ($REQUEST_METHOD == "GET") { + global $HTTP_GET_VARS; + RemoveSlashes($HTTP_GET_VARS); + } +} + + function attachment_common_parse($str, $debug) { global $attachment_common_types, $attachment_common_types_parsed; @@ -149,9 +163,10 @@ if (isset($HTTP_ACCEPT) && /* Complete autodetection of Javascript. */ -checkForPrefs($data_dir, $username); -$javascript_setting = getPref($data_dir, $username, 'javascript_setting', SMPREF_JS_AUTODETECT); -$js_autodetect_results = (isset($js_autodetect_results) ? $js_autodetect_results : SMPREF_JS_OFF); +$javascript_setting = getPref + ($data_dir, $username, 'javascript_setting', SMPREF_JS_AUTODETECT); +$js_autodetect_results = (isset($js_autodetect_results) ? + $js_autodetect_results : SMPREF_JS_OFF); if ($javascript_setting == SMPREF_JS_AUTODETECT) { if ($js_autodetect_results == SMPREF_JS_ON) { setPref($data_dir, $username, 'javascript_on', SMPREF_JS_ON);