Update of /cvsroot/easymod/easymod2/mods/easymod/includes
In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv16726
Modified Files:
admin_easymod.php.txt
Log Message:
Fix double htmlspecialchars applied to SQL statements.
Bug reported by -=ET=- (merci ;-)
http://area51.phpbb.com/phpBB/viewtopic.php?sid=&f=43&t=21660
http://sourceforge.net/tracker/index.php?func=detail&aid=1396713&group_id=136984&atid=737391
Index: admin_easymod.php.txt
===================================================================
RCS file: /cvsroot/easymod/easymod2/mods/easymod/includes/admin_easymod.php.txt,v
retrieving revision 1.44
retrieving revision 1.45
diff -C2 -d -r1.44 -r1.45
*** admin_easymod.php.txt 8 Nov 2005 16:52:41 -0000 1.44
--- admin_easymod.php.txt 5 Jan 2006 15:51:56 -0000 1.45
***************
*** 3100,3104 ****
{
$formatted_sql[$i] = htmlspecialchars($formatted_sql[$i]) . ';';
! $hidden_sql = '<input type="hidden" name="SQL' . $steps . '" value="' . htmlspecialchars($formatted_sql[$i]) . '" />';
$check = '<input type="checkbox" name="check_SQL' . $steps . '" checked="checked" />';
$steps++;
--- 3100,3104 ----
{
$formatted_sql[$i] = htmlspecialchars($formatted_sql[$i]) . ';';
! $hidden_sql = '<input type="hidden" name="SQL' . $steps . '" value="' . $formatted_sql[$i] . '" />';
$check = '<input type="checkbox" name="check_SQL' . $steps . '" checked="checked" />';
$steps++;
|
