Menu
▾
▴
[mxbb-commits] core/includes mx_functions_admincp.php,1.57,1.58
|
From: FlorinCB <ory...@us...> - 2008-07-20 04:23:59
|
Update of /cvsroot/mxbb/core/includes In directory sc8-pr-cvs16.sourceforge.net:/tmp/cvs-serv27512 Modified Files: mx_functions_admincp.php Log Message: stripslashes() Index: mx_functions_admincp.php =================================================================== RCS file: /cvsroot/mxbb/core/includes/mx_functions_admincp.php,v retrieving revision 1.57 retrieving revision 1.58 diff -C2 -d -r1.57 -r1.58 *** mx_functions_admincp.php 20 Jul 2008 03:50:05 -0000 1.57 --- mx_functions_admincp.php 20 Jul 2008 04:23:56 -0000 1.58 *************** *** 2687,2695 **** // $fcontents = $this->getSafeObjects($fcontents); // // Proceed with fixed object ids (fcontents) for install/upgrade... // ! for( $i = 0; $i < count($fcontents) && !$pak_error; $i++ ) { $module_data = explode($delimeter, trim(addslashes($fcontents[$i]))); --- 2687,2697 ---- // $fcontents = $this->getSafeObjects($fcontents); + + $parameter_order = 0; // // Proceed with fixed object ids (fcontents) for install/upgrade... // ! for($i = 0; $i < count($fcontents) && !$pak_error; $i++) { $module_data = explode($delimeter, trim(addslashes($fcontents[$i]))); *************** *** 2754,2767 **** $fldkey = 'parameter_id'; $key = $module_data[2]; ! $sql = array( 'function_id' => (int) $module_data[1], 'parameter_id' => (int) $module_data[2], ! 'parameter_name' => str_replace("\'", "''",$module_data[3]), ! 'parameter_type' => str_replace("\'", "''",$module_data[4]), ! 'parameter_default' => str_replace("\'", "''", $module_data[5]), ! 'parameter_function' => str_replace("\'", "''",$module_data[6]), ! 'parameter_auth' => str_replace("\'", "''",$module_data[7]), ! 'parameter_order' => (int) $module_data[8], ); $sql_add = "INSERT INTO $table " . $db->sql_build_array('INSERT', $sql); --- 2756,2769 ---- $fldkey = 'parameter_id'; $key = $module_data[2]; ! ++$parameter_order; $sql = array( 'function_id' => (int) $module_data[1], 'parameter_id' => (int) $module_data[2], ! 'parameter_name' => stripslashes($module_data[3]), ! 'parameter_type' => stripslashes($module_data[4]), ! 'parameter_default' => stripslashes($module_data[5]), ! 'parameter_function' => stripslashes($module_data[6]), ! 'parameter_auth' => stripslashes($module_data[7]), ! 'parameter_order' => (int) $parameter_order, ); $sql_add = "INSERT INTO $table " . $db->sql_build_array('INSERT', $sql); *************** *** 2775,2779 **** parameter_auth = '" . str_replace("\'", "''",$module_data[7]) . "', parameter_order = '" . str_replace("\'", "''",$module_data[8]) . "' ! WHERE parameter_id = '" . intval( $module_data[2] ) . "'"; $sql_delete = "DELETE FROM " . PARAMETER_TABLE . " WHERE function_id = " . $module_data[1] . " AND parameter_id = " . $module_data[2]; --- 2777,2781 ---- parameter_auth = '" . str_replace("\'", "''",$module_data[7]) . "', parameter_order = '" . str_replace("\'", "''",$module_data[8]) . "' ! WHERE parameter_id = '" . intval($module_data[2]) . "'"; $sql_delete = "DELETE FROM " . PARAMETER_TABLE . " WHERE function_id = " . $module_data[1] . " AND parameter_id = " . $module_data[2]; |
