/** * Returns escaped value of parameter stored in POST,GET. * * @param string $name Name of parameter. * @param string $defaultValue Default value if no value provided. * * @return mixed */ public function getRequestEscapedParameter($name, $defaultValue = null) { $value = $this->getRequestParameter($name, $defaultValue); // TODO: remove this after special chars concept implementation $isAdmin = Registry::getConfig()->isAdmin() && Registry::getSession()->getVariable("blIsAdmin"); if ($value !== null && !$isAdmin) { $this->checkParamSpecialChars($value); } return $value; }