From 76d6901eb2e6cfe930d2686d86bd5089e525e8b6 Mon Sep 17 00:00:00 2001
From: doogie <>
Date: Sat, 17 Nov 2001 06:35:13 -0800
Subject: [PATCH] [project @ 2001-11-17 06:35:13 by doogie] Don't escape "&" in
 urlsanit.

---
 cgi/common.pl | 9 ++++++++-
 1 file changed, 8 insertions(+), 1 deletion(-)

diff --git a/cgi/common.pl b/cgi/common.pl
index 9f6d13c6..626be400 100644
--- a/cgi/common.pl
+++ b/cgi/common.pl
@@ -172,7 +172,14 @@ sub urlsanit {
     my $url = shift;
     $url =~ s/%/%25/g;
     $url =~ s/\+/%2b/g;
-    return htmlsanit($url);
+    my %saniarray = ('<','lt', '>','gt', '"','quot');
+    my $out;
+    while ($url =~ m/[<>"]/) {
+        $out .= $`. '&'. $saniarray{$&}. ';';
+        $url = $';
+    }
+    $out .= $url;
+    return $out;
 }
 
 sub htmlsanit {
-- 
2.39.5