X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;ds=inline;f=mod%2Fsubthread.php;h=bd7fee534e81b1fb80dfda60405da38f60f40055;hb=ed7bada71eb7e5d1c2953e94abb47b531781306d;hp=425306b6f7b70236561d6566906c8d5b99eac88e;hpb=59d8cae805f2160402c135960b9d834a4bcd65ef;p=friendica.git

diff --git a/mod/subthread.php b/mod/subthread.php
index 425306b6f7..bd7fee534e 100644
--- a/mod/subthread.php
+++ b/mod/subthread.php
@@ -10,10 +10,9 @@ use Friendica\Core\System;
 use Friendica\Database\DBA;
 use Friendica\Model\Item;
 use Friendica\Util\Security;
+use Friendica\Util\Strings;
 use Friendica\Util\XML;
 
-require_once 'include/items.php';
-
 function subthread_content(App $a) {
 
 	if (!local_user() && !remote_user()) {
@@ -22,7 +21,7 @@ function subthread_content(App $a) {
 
 	$activity = ACTIVITY_FOLLOW;
 
-	$item_id = (($a->argc > 1) ? notags(trim($a->argv[1])) : 0);
+	$item_id = (($a->argc > 1) ? Strings::escapeTags(trim($a->argv[1])) : 0);
 
 	$condition = ["`parent` = ? OR `parent-uri` = ? AND `parent` = `id`", $item_id, $item_id];
 	$item = Item::selectFirst([], $condition);
@@ -88,7 +87,7 @@ function subthread_content(App $a) {
 
 	$post_type = (($item['resource-id']) ? L10n::t('photo') : L10n::t('status'));
 	$objtype = (($item['resource-id']) ? ACTIVITY_OBJ_IMAGE : ACTIVITY_OBJ_NOTE );
-	$link = XML::escape('<link rel="alternate" type="text/html" href="' . System::baseUrl() . '/display/' . $owner['nickname'] . '/' . $item['id'] . '" />' . "\n") ;
+	$link = XML::escape('<link rel="alternate" type="text/html" href="' . System::baseUrl() . '/display/' . $owner['nickname'] . '/' . $item['id'] . '" />' . "\n");
 	$body = $item['body'];
 
 	$obj = <<< EOT