major bug fix reported by Ahmed Shawky (there was a possibility of double url encoding of parameter values)