htdocs/changetz.php
changeset 10 a97bd37e43e9
parent 8 0acb8d9a3194
child 44 73f74d395f95
--- a/htdocs/changetz.php	Mon Aug 25 12:36:37 2008 -0400
+++ b/htdocs/changetz.php	Sun Aug 31 10:13:05 2008 +0000
@@ -53,11 +53,11 @@
     <?php
     if ( $set_zone )
     {
-      $target = dirname($_SERVER['PHP_SELF']) . '/';
+      $target = rtrim(dirname($_SERVER['REQUEST_URI']), '/') . '/';
       echo '<div class="success">' . "Successfully set time zone to <b>{$set_zone}</b>. <a href=\"$target\">Return to the stats page</a>." . '</div>';
     }
     ?>
-    <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
+    <form action="<?php echo htmlspecialchars($_SERVER['REQUEST_URI']); ?>" method="post">
     Select time zone:
     <select name="tz">
       <?php