|
From: Garvin H. <gar...@us...> - 2004-08-25 07:46:14
|
Update of /cvsroot/php-blog/serendipity/plugins/serendipity_plugin_comments In directory sc8-pr-cvs1.sourceforge.net:/tmp/cvs-serv10803/plugins/serendipity_plugin_comments Modified Files: serendipity_plugin_comments.php Log Message: strip tags from comment plugin; bbcode may get transfered to a link and may be split because of the wordwrapping and leave unvalidatable HTML. So we strip every markup apart from linebreaks and img's here. Index: serendipity_plugin_comments.php =================================================================== RCS file: /cvsroot/php-blog/serendipity/plugins/serendipity_plugin_comments/serendipity_plugin_comments.php,v retrieving revision 1.23 retrieving revision 1.24 diff -u -d -r1.23 -r1.24 --- serendipity_plugin_comments.php 24 Aug 2004 17:33:04 -0000 1.23 +++ serendipity_plugin_comments.php 25 Aug 2004 07:45:55 -0000 1.24 @@ -143,7 +143,6 @@ $entry = array('comment' => wordwrap($comment, $wordwrap, "\n", 1)); serendipity_plugin_api::hook_event('frontend_display', $entry); - printf( PLUGIN_COMMENTS_ABOUT, @@ -152,7 +151,7 @@ . htmlspecialchars($row['subject']) . '</a><br />' . "\n" . htmlspecialchars(strftime($dateformat, $row['stamp'])) . '<br />' . "\n" - . $entry['comment'] + . strip_tags($entry['comment'], '<br><img>') . '<br /><br /><br />' . "\n\n" ); } |
