[TYPO3-core] FYI48: #12545: t3lib_div::linkThisScript isn't xhtml compatibel
Helmut Hummel
helmut at typo3.org
Tue Nov 10 21:42:12 CET 2009
Hi Steffen,
Am 10.11.09 21:34, schrieb Steffen Kamper:
>
> And try yourself, htmlspecialchars isn't correct:
>
> $a = 'index.php?id=4&c[bla]=derwahn&x=5&return=last';
If the string is like this, then I consider this as a "bug". It should
be changed to only contain ampersands and not HTML entities (so that it
can be escaped with htmlspecialchars or urlencode depending on the case
where this URL is needed).
> preg_replace('/&(?!amp;)/', '&', $a) != htmlspecialchars($a)
Of course it's not the same, but htmlspecialchars should be used, if
it's not possible, the behaviour must be changed in another place.
Regards Helmut
More information about the TYPO3-team-core
mailing list