From 25f34f21f664d4c57d65d7f15c53674eb654bdf2 Mon Sep 17 00:00:00 2001
From: Anibal Copitan <anibal.copitan@beeznest.com>
Date: Thu, 18 Sep 2014 10:25:07 -0500
Subject: [PATCH] valid : GET[thread] for hidden iframe, at create new forum

---
 main/forum/forumfunction.inc.php | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/main/forum/forumfunction.inc.php b/main/forum/forumfunction.inc.php
index 9394e55bee..71ddeac968 100755
--- a/main/forum/forumfunction.inc.php
+++ b/main/forum/forumfunction.inc.php
@@ -2366,10 +2366,11 @@ function show_add_post_form($current_forum, $forum_setting, $action = '', $id =
         $form->setConstants(array('sec_token' => $token));
 
         $iframe = null;
-
-        if ($forum_setting['show_thread_iframe_on_reply'] && $action != 'newthread') {
-            $iframe = "<iframe style=\"border: 1px solid black\" src=\"iframe_thread.php?forum=".Security::remove_XSS($my_forum)."&amp;thread=".Security::remove_XSS($my_thread)."#".Security::remove_XSS($my_post)."\" width=\"100%\"></iframe>";
+        $my_thread = Security::remove_XSS($my_thread);
+        if ($forum_setting['show_thread_iframe_on_reply'] && $action != 'newthread' && !empty($my_thread)) {
+            $iframe = "<iframe style=\"border: 1px solid black\" src=\"iframe_thread.php?forum=".Security::remove_XSS($my_forum)."&amp;thread=".$my_thread."#".Security::remove_XSS($my_post)."\" width=\"100%\"></iframe>";
         }
+
         if (!empty($iframe)) {
             $form->addElement('label', get_lang('Thread'), $iframe);
         }