[geeklog-cvs] geeklog: Escape curly braces in the query string when using "ref...

[geeklog-cvs at lists.geeklog.net]

details:   http://project.geeklog.net/cgi-bin/hgweb.cgi/rev/ed82d9573e1c
changeset: 7133:ed82d9573e1c
user:      Dirk Haun <dirk at haun-online.de>
date:      Sat Jun 20 20:57:26 2009 +0200
description:
Escape curly braces in the query string when using "refine search"

diffstat:

 system/classes/search.class.php |  5 ++++-
 1 files changed, 4 insertions(+), 1 deletions(-)

diffs (15 lines):

diff -r 321f355aaf81 -r ed82d9573e1c system/classes/search.class.php
--- a/system/classes/search.class.php	Sat Jun 20 20:53:47 2009 +0200
+++ b/system/classes/search.class.php	Sat Jun 20 20:57:26 2009 +0200
@@ -241,7 +241,10 @@
         $searchform->set_var('lang_any_word', $LANG09[45]);
         $searchform->set_var('lang_titles', $LANG09[69]);
 
-        $searchform->set_var ('query', htmlspecialchars ($this->_query));
+        $escquery = htmlspecialchars($this->_query);
+        $escquery = str_replace(array('{', '}'), array('{', '}'),
+                                $escquery);
+        $searchform->set_var ('query', $escquery);
         $searchform->set_var ('datestart', $this->_dateStart);
         $searchform->set_var ('dateend', $this->_dateEnd);