From 98e65ec40f7ecd11d7f589a2fba091d7a07a4ddb Mon Sep 17 00:00:00 2001
From: "Paul S. Owen" <psotfx@users.sourceforge.net>
Date: Mon, 9 Jun 2003 13:01:47 +0000
Subject: [PATCH] Poss (minor) xss issue

git-svn-id: file:///svn/phpbb/branches/phpBB-2_0_0@4097 89ea8834-ac86-4346-8a33-228a782c2dd0
---
 phpBB/memberlist.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/phpBB/memberlist.php b/phpBB/memberlist.php
index cf0b724615..afa4ed8b4b 100644
--- a/phpBB/memberlist.php
+++ b/phpBB/memberlist.php
@@ -37,7 +37,7 @@ $start = ( isset($HTTP_GET_VARS['start']) ) ? intval($HTTP_GET_VARS['start']) :
 
 if ( isset($HTTP_GET_VARS['mode']) || isset($HTTP_POST_VARS['mode']) )
 {
-	$mode = ( isset($HTTP_POST_VARS['mode']) ) ? $HTTP_POST_VARS['mode'] : $HTTP_GET_VARS['mode'];
+	$mode = ( isset($HTTP_POST_VARS['mode']) ) ? htmlspecialchars($HTTP_POST_VARS['mode']) : htmlspecialchars($HTTP_GET_VARS['mode']);
 }
 else
 {