Fixed bug #13137: redirect/returnUrl isn't validated in core (thanks to Georg Ringer...
[Packages/TYPO3.CMS.git] / typo3 / sysext / cms / layout / db_layout.php
index bbec374..2c9819a 100755 (executable)
@@ -250,7 +250,7 @@ class SC_db_layout {
                $this->search_field = t3lib_div::_GP('search_field');
                $this->search_levels = t3lib_div::_GP('search_levels');
                $this->showLimit = t3lib_div::_GP('showLimit');
-               $this->returnUrl = t3lib_div::_GP('returnUrl');
+               $this->returnUrl = t3lib_div::sanitizeLocalUrl(t3lib_div::_GP('returnUrl'));
                $this->externalTables = $GLOBALS['TYPO3_CONF_VARS']['EXTCONF']['cms']['db_layout']['addTables'];
 
                        // Load page info array: