From c2a86e71bea613f80eae6aec456cbf1bb67d8cc4 Mon Sep 17 00:00:00 2001
From: Laurent Destailleur <eldy@destailleur.fr>
Date: Sun, 14 Mar 2021 16:44:11 +0100
Subject: [PATCH] fix phpv8

---
 htdocs/core/lib/functions.lib.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/htdocs/core/lib/functions.lib.php b/htdocs/core/lib/functions.lib.php
index 3fda792cbb4..f798d7cbe72 100644
--- a/htdocs/core/lib/functions.lib.php
+++ b/htdocs/core/lib/functions.lib.php
@@ -1013,7 +1013,7 @@ function dol_sanitizeUrl($stringtoclean, $type = 1)
 	// We should use dol_string_nounprintableascii but function is not yet loaded/available
 	$stringtoclean = preg_replace('/[\x00-\x1F\x7F]/u', '', $stringtoclean); // /u operator makes UTF8 valid characters being ignored so are not included into the replace
 	// We clean html comments because some hacks try to obfuscate evil strings by inserting HTML comments. Example: on<!-- -->error=alert(1)
-	$val = preg_replace('/<!--[^>]*-->/', '', $val);
+	$stringtoclean = preg_replace('/<!--[^>]*-->/', '', $stringtoclean);
 
 	$stringtoclean = str_replace('\\', '/', $stringtoclean);
 	$stringtoclean = str_replace(array(':', '@'), '', $stringtoclean);