X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Foexchange.php;h=10d48338a436aabe6ca335737158d77b6f9edea2;hb=6e2880c6799e5c98e41ea40e1bdbac7bfe6ae326;hp=296869aac9eb0d9f1f12afd2b8285c9063522c4e;hpb=35abc4bb64bbb461e6448beed10484c028b74340;p=friendica.git

diff --git a/mod/oexchange.php b/mod/oexchange.php
index 296869aac9..10d48338a4 100644
--- a/mod/oexchange.php
+++ b/mod/oexchange.php
@@ -5,18 +5,19 @@
 use Friendica\App;
 use Friendica\Core\L10n;
 use Friendica\Core\Renderer;
-use Friendica\Core\System;
-use Friendica\Module\Login;
+use Friendica\DI;
+use Friendica\Module\Security\Login;
 use Friendica\Util\Network;
+use Friendica\Util\Strings;
 
 function oexchange_init(App $a) {
 
 	if (($a->argc > 1) && ($a->argv[1] === 'xrd')) {
 		$tpl = Renderer::getMarkupTemplate('oexchange_xrd.tpl');
 
-		$o = Renderer::replaceMacros($tpl, ['$base' => System::baseUrl()]);
+		$o = Renderer::replaceMacros($tpl, ['$base' => DI::baseUrl()]);
 		echo $o;
-		killme();
+		exit();
 	}
 }
 
@@ -32,16 +33,16 @@ function oexchange_content(App $a) {
 		return;
 	}
 
-	$url = ((x($_REQUEST,'url') && strlen($_REQUEST['url']))
-		? urlencode(notags(trim($_REQUEST['url']))) : '');
-	$title = ((x($_REQUEST,'title') && strlen($_REQUEST['title']))
-		? '&title=' . urlencode(notags(trim($_REQUEST['title']))) : '');
-	$description = ((x($_REQUEST,'description') && strlen($_REQUEST['description']))
-		? '&description=' . urlencode(notags(trim($_REQUEST['description']))) : '');
-	$tags = ((x($_REQUEST,'tags') && strlen($_REQUEST['tags']))
-		? '&tags=' . urlencode(notags(trim($_REQUEST['tags']))) : '');
+	$url = ((!empty($_REQUEST['url']))
+		? urlencode(Strings::escapeTags(trim($_REQUEST['url']))) : '');
+	$title = ((!empty($_REQUEST['title']))
+		? '&title=' . urlencode(Strings::escapeTags(trim($_REQUEST['title']))) : '');
+	$description = ((!empty($_REQUEST['description']))
+		? '&description=' . urlencode(Strings::escapeTags(trim($_REQUEST['description']))) : '');
+	$tags = ((!empty($_REQUEST['tags']))
+		? '&tags=' . urlencode(Strings::escapeTags(trim($_REQUEST['tags']))) : '');
 
-	$s = Network::fetchUrl(System::baseUrl() . '/parse_url?f=&url=' . $url . $title . $description . $tags);
+	$s = Network::fetchUrl(DI::baseUrl() . '/parse_url?url=' . $url . $title . $description . $tags);
 
 	if (!strlen($s)) {
 		return;