Index: www/login.php
===================================================================
RCS file: /repository/docweb/www/login.php,v
retrieving revision 1.3
diff -u -r1.3 login.php
--- www/login.php	5 Dec 2006 17:53:15 -0000	1.3
+++ www/login.php	5 Dec 2006 17:59:03 -0000
@@ -8,7 +8,7 @@
     auth();
         
     if (isset($_REQUEST['return']) && !empty($_REQUEST['return'])
-        && strpos($_REQUEST['return'], "\n") === false) {
+        && ctype_print($_REQUEST['return'])) {
 
         header('Location: http://'.$_SERVER['HTTP_HOST'].$_REQUEST['return']);
     }