[Easymod-cvs] easymod2/mods/easymod/includes admin_easymod.php.txt,1.44,1.45
Status: Beta
Brought to you by:
wgeric
Menu
▾
▴
[Easymod-cvs] easymod2/mods/easymod/includes admin_easymod.php.txt,1.44,1.45
|
From: Markus P. <mar...@us...> - 2006-01-05 15:52:11
|
Update of /cvsroot/easymod/easymod2/mods/easymod/includes In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv16726 Modified Files: admin_easymod.php.txt Log Message: Fix double htmlspecialchars applied to SQL statements. Bug reported by -=ET=- (merci ;-) http://area51.phpbb.com/phpBB/viewtopic.php?sid=&f=43&t=21660 http://sourceforge.net/tracker/index.php?func=detail&aid=1396713&group_id=136984&atid=737391 Index: admin_easymod.php.txt =================================================================== RCS file: /cvsroot/easymod/easymod2/mods/easymod/includes/admin_easymod.php.txt,v retrieving revision 1.44 retrieving revision 1.45 diff -C2 -d -r1.44 -r1.45 *** admin_easymod.php.txt 8 Nov 2005 16:52:41 -0000 1.44 --- admin_easymod.php.txt 5 Jan 2006 15:51:56 -0000 1.45 *************** *** 3100,3104 **** { $formatted_sql[$i] = htmlspecialchars($formatted_sql[$i]) . ';'; ! $hidden_sql = '<input type="hidden" name="SQL' . $steps . '" value="' . htmlspecialchars($formatted_sql[$i]) . '" />'; $check = '<input type="checkbox" name="check_SQL' . $steps . '" checked="checked" />'; $steps++; --- 3100,3104 ---- { $formatted_sql[$i] = htmlspecialchars($formatted_sql[$i]) . ';'; ! $hidden_sql = '<input type="hidden" name="SQL' . $steps . '" value="' . $formatted_sql[$i] . '" />'; $check = '<input type="checkbox" name="check_SQL' . $steps . '" checked="checked" />'; $steps++; |
