diff options
| -rwxr-xr-x | httemplate/search/svc_acct.cgi | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/httemplate/search/svc_acct.cgi b/httemplate/search/svc_acct.cgi index 0918275d7..dd0221d9a 100755 --- a/httemplate/search/svc_acct.cgi +++ b/httemplate/search/svc_acct.cgi @@ -234,7 +234,7 @@ sub uid_sort { sub usernamesearch { - $cgi->param('username') =~ /^([\w\d\-]+)$/; #untaint username_text + $cgi->param('username') =~ /^([\w\-\.\&]+)$/; #untaint username_text my($username)=$1; [ qsearch('svc_acct',{'username'=>$username}) ]; |