[TYPO3-core] FYI48: #12545: t3lib_div::linkThisScript isn't xhtml compatibel

[JoH asenau]

>> And try yourself, htmlspecialchars isn't correct:
>>
>> $a = 'index.php?id=4&c[bla]=derwahn&x=5&return=last';
>
> Where does that string come from? Is the return=last just an example?
>
> Anyway a string is either encoded or not. Your example has "mixed
> content" and is therefore invalid.

No it isn't ...
... well actually the string is, but the mixed content is not.
In many places strings are collected from different sources which might not
be controlled by the core before they are used to create the URL, but still
the core has to make sure that the output IS valid.

So
-1 for htmlspecialchars
and
+1 for a replacement of a single & with & while leaving existing &
as is.

Cheers

Joey

-- 
Wenn man keine Ahnung hat: Einfach mal Fresse halten!
(If you have no clues: simply shut your gob sometimes!)
Dieter Nuhr, German comedian
Xing: http://contact.cybercraft.de
Twitter: http://twitter.com/bunnyfield
TYPO3 cookbook (2nd edition): http://www.typo3experts.com