my %config = &Util::ReadConfigFile;
my $query = new CGI;
-my $id = $query->param('id');
-my $authtoken = $query->param('authtoken');
+my $id = uri_escape($query->param('id'));
+my $authtoken = uri_escape($query->param('authtoken'));
my $password = &Util::CheckAuthToken($authtoken);
-my $dosearch = $query->param('dosearch');
-my $searchdn = $query->param('searchdn');
+my $dosearch = uri_escape($query->param('dosearch'));
+my $searchdn = uri_escape($query->param('searchdn'));
my $ldap = undef;
my $proto = ($ENV{HTTPS} ? "https" : "http");