sanitize body input on search.php

lpanlab · Oct 25, 2013 · 3dde9a2 · 3dde9a2
1 parent 57084ea
commit 3dde9a2
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/search.php b/search.php
@@ -193,9 +193,7 @@
         $tags = '';
     }
     if (isset($_GET['body']) && !empty($_GET['body'])) {
-        $body = check_body($_GET['body']);
-        // TODO filter sanitize to test xss
-        // $body = filter_var($body, FILTER_SANITIZE_STRING);
+         $body = filter_var(check_body($_GET['body']), FILTER_SANITIZE_STRING);
     } else {
         $body = '';
     }