From 5736372868d16010dbf054fb09ca5c5e6b4e2a77 Mon Sep 17 00:00:00 2001
From: "grami.moss@gmail.com" <grami.moss@gmail.com>
Date: Fri, 19 Feb 2016 10:13:10 +0000
Subject: [PATCH] XSS security for NGINX servers that can't use .htaccess

---
 engine/Security.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/engine/Security.php b/engine/Security.php
index d569eee8..67a436ab 100644
--- a/engine/Security.php
+++ b/engine/Security.php
@@ -196,6 +196,7 @@ public static function sanitizeURL($url)
     public static function runSanitizeURL()
     {
         $_GET = array_map('Security::sanitizeURL', $_GET);
+        $_SERVER = array_map('Security::sanitizeURL', $_SERVER);
     }
 
     /**