bug 2430 fixed: prevents from cross site scripting, the URL is cleanly rewritten

git-svn-id: http://piwigo.org/svn/trunk@12342 68402e56-0260-453c-a942-63ccdbb3a9ee

plugins/language_switch/language_switch.inc.php

@@ -100,15 +100,11 @@ UPDATE '.USER_INFOS_TABLE.'
     }
     
     $url_starting = get_query_string_diff(array('lang'));
-    
+
     foreach ($available_lang as $code => $displayname)
     {
-      $qlc = array ( 
-        'url' => str_replace(
-          array('=&','?&'),
-          array('&','?'),
-          add_url_params($url_starting, array('lang'=> $code))
-          ),
+      $qlc = array (
+        'url' => add_url_params(duplicate_index_url(), array('lang'=> $code)),
         'alt' => ucwords($displayname),
         'title' => substr($displayname, 0, -4), // remove [FR] or [RU]
         'img' => get_root_url().'language/'.$code.'/'.$code.'.jpg',
@@ -149,4 +145,4 @@ if (!function_exists('Componant_exists'))
   }
 }
 
-?>
+?>