fix bug 14137, i'm a little worried about the security implications of doing this, but i don't see what protection htmlentities gives us here we output the url in javascript blocks already
--- trunk/src/HTML/AJAX/Server.php 2008-06-16 17:31:39 UTC (rev 626)
+++ trunk/src/HTML/AJAX/Server.php 2008-06-16 17:44:53 UTC (rev 627)
@@ -196,7 +196,7 @@
if (substr($serverUrl,-1) != '?') {
$serverUrl .= '?';
}
- $this->ajax->serverUrl = $serverUrl . htmlentities($querystring);
+ $this->ajax->serverUrl = $serverUrl . $querystring;
$methods = get_class_methods($this);
foreach($methods as $method) {