Merge branch '1.x' into 2.x

oveleon · Jan 23, 2025 · 83a0bdf · 83a0bdf
2 parents eddb505 + 80fbc20
commit 83a0bdf
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/src/Controller/CookiebarController.php b/src/Controller/CookiebarController.php
@@ -13,6 +13,7 @@
 use Contao\CoreBundle\Exception\PageNotFoundException;
 use Contao\FrontendTemplate;
 use Contao\Input;
+use Contao\StringUtil;
 use Contao\System;
 use Contao\Validator;
 use Oveleon\ContaoCookiebar\Cookiebar;
@@ -58,7 +59,7 @@ public function block(Request $request, string $locale, int $id): Response
         }
 
         // Protect against XSS attacks
-        $strUrl = Input::get('redirect');
+        $strUrl = StringUtil::stripInsertTags(StringUtil::specialchars($request->get('redirect')));
 
         if(!Validator::isUrl($strUrl))
         {