Index: branches/5.2.x/core/kernel/application.php
===================================================================
diff -u -N -r16081 -r16082
--- branches/5.2.x/core/kernel/application.php	(.../application.php)	(revision 16081)
+++ branches/5.2.x/core/kernel/application.php	(.../application.php)	(revision 16082)
@@ -1,6 +1,6 @@
 <?php
 /**
-* @version	$Id: application.php 16081 2014-10-21 15:46:58Z alex $
+* @version	$Id: application.php 16082 2014-10-21 16:07:36Z alex $
 * @package	In-Portal
 * @copyright	Copyright (C) 1997 - 2009 Intechnic. All rights reserved.
 * @license      GNU/GPL
@@ -1889,8 +1889,8 @@
 				return;
 			}
 			else {
-				if ( $this->GetVar('ajax') == 'yes' && $t != $this->GetVar('t') ) {
-					// redirection to other then current template during ajax request
+				if ( $this->GetVar('ajax') == 'yes' && ($t != $this->GetVar('t') || !$this->isSOPSafe($location, $t)) ) {
+					// redirection to other then current template during ajax request OR SOP violation
 					kUtil::safeDefine('DBG_SKIP_REPORTING', 1);
 					echo '#redirect#' . $location;
 				}
@@ -1925,6 +1925,34 @@
 	}
 
 	/**
+	 * Determines if real redirect should be made within AJAX request.
+	 *
+	 * @param string $url      Location.
+	 * @param string $template Template.
+	 *
+	 * @return boolean
+	 * @link   http://en.wikipedia.org/wiki/Same-origin_policy
+	 */
+	protected function isSOPSafe($url, $template)
+	{
+		$parsed_url = parse_url($url);
+
+		if ( $parsed_url['scheme'] . '://' != PROTOCOL ) {
+			return false;
+		}
+
+		if ( $parsed_url['host'] != SERVER_NAME ) {
+			return false;
+		}
+
+		if ( defined('PORT') && isset($parsed_url['port']) && $parsed_url['port'] != PORT ) {
+			return false;
+		}
+
+		return true;
+	}
+
+	/**
 	 * Returns translation of given label
 	 *
 	 * @param string $label