From fd785f3d32d0b299556890e9fa639d5cc1209019 Mon Sep 17 00:00:00 2001
From: filip <filip.komar@gmail.com>
Date: Thu, 7 Jul 2016 23:51:39 +0200
Subject: new function 'get sanitized string from $_GET'

---
 langs/diff.php | 11 ++++++-----
 1 file changed, 6 insertions(+), 5 deletions(-)

(limited to 'langs/diff.php')

diff --git a/langs/diff.php b/langs/diff.php
index fcc0f93ff..f3c10b895 100644
--- a/langs/diff.php
+++ b/langs/diff.php
@@ -6,13 +6,14 @@
 define('HLANG', true);
 include 'lib.php';
 
-$source_file = isset($_GET['s']) ? strip_tags(trim($_GET['s'])) : null;
-$target_lang = isset($_GET['l']) ? strip_tags(trim($_GET['l'])) : null;
+$source_file = get_sane_string('s');
+$target_lang = get_sane_string('l');
 
-if (is_null($source_file) ||
-    is_null($target_lang)) {
+if (empty($source_file) ||
+    empty($target_lang)) {
 
-    die('kthxbai');
+    header('Location: /langs/report.php');
+    die;
 }
 
 if (!file_exists($source_file)) {
-- 
cgit v1.2.1