From 5fcdabcd05a55c6ebbc30960433189246253410e Mon Sep 17 00:00:00 2001
From: Hendro Wicaksono <hendrowicaksono@yahoo.com>
Date: Thu, 16 Mar 2017 22:33:29 +0700
Subject: [PATCH] Fixed cross-site scripting vulnerability.

---
 template/default/detail_template.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/template/default/detail_template.php b/template/default/detail_template.php
index b975d99..62e0080 100755
--- a/template/default/detail_template.php
+++ b/template/default/detail_template.php
@@ -1,4 +1,6 @@
 <?php
+$_GET['id'] = (integer) htmlspecialchars($_GET['id']);
+#$_GET['id'] = (integer) $_GET['id'];
 // biblio/record detail
 // output the buffer
 ob_start(); /* <- DONT REMOVE THIS COMMAND */