X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fpoke.php;h=f1bad7742b5ebedb6810920a37e171b05d732eca;hb=f2e2066d339dcd4f732219857a3bd9cb3144911b;hp=e8c43213a799c536e2b92b7243739f2783d00c1a;hpb=352da9bcf393e4be886cda3bfe7db7d80365fef2;p=friendica.git

diff --git a/mod/poke.php b/mod/poke.php
index e8c43213a7..f1bad7742b 100644
--- a/mod/poke.php
+++ b/mod/poke.php
@@ -22,6 +22,7 @@ use Friendica\Core\System;
 use Friendica\Core\Worker;
 use Friendica\Database\DBA;
 use Friendica\Model\Item;
+use Friendica\Util\Strings;
 use Friendica\Util\XML;
 
 require_once 'include/items.php';
@@ -38,7 +39,7 @@ function poke_init(App $a)
 		return;
 	}
 
-	$verb = notags(trim($_GET['verb']));
+	$verb = Strings::escapeTags(trim($_GET['verb']));
 
 	$verbs = L10n::getPokeVerbs();
 
@@ -53,7 +54,7 @@ function poke_init(App $a)
 		return;
 	}
 
-	$parent = (x($_GET,'parent') ? intval($_GET['parent']) : 0);
+	$parent = (!empty($_GET['parent']) ? intval($_GET['parent']) : 0);
 
 
 	Logger::log('poke: verb ' . $verb . ' contact ' . $contact_id, Logger::DEBUG);
@@ -85,7 +86,7 @@ function poke_init(App $a)
 			$deny_gid   = $item['deny_gid'];
 		}
 	} else {
-		$private = (x($_GET,'private') ? intval($_GET['private']) : 0);
+		$private = (!empty($_GET['private']) ? intval($_GET['private']) : 0);
 
 		$allow_cid     = ($private ? '<' . $target['id']. '>' : $a->user['allow_cid']);
 		$allow_gid     = ($private ? '' : $a->user['allow_gid']);
@@ -168,7 +169,7 @@ function poke_content(App $a)
 	]);
 
 
-	$parent = (x($_GET,'parent') ? intval($_GET['parent']) : '0');
+	$parent = (!empty($_GET['parent']) ? intval($_GET['parent']) : '0');
 
 
 	$verbs = L10n::getPokeVerbs();