|
From: Joe S. <joe...@us...> - 2002-03-23 14:12:31
|
Update of /cvsroot/phpslash/phpslash-ft/public_html
In directory usw-pr-cvs1:/tmp/cvs-serv15878/phpslash-ft/public_html
Modified Files:
backend.php3 article.php3
Log Message:
htmlentity of bad story_id
Index: backend.php3
===================================================================
RCS file: /cvsroot/phpslash/phpslash-ft/public_html/backend.php3,v
retrieving revision 1.28
retrieving revision 1.29
diff -C2 -d -r1.28 -r1.29
*** backend.php3 19 Mar 2002 21:59:11 -0000 1.28
--- backend.php3 23 Mar 2002 14:12:28 -0000 1.29
***************
*** 82,86 ****
case 'mozilla':
$viewtpl = 'backendMozilla.tpl';
! $target = '_content';
break;
case 'opml':
--- 82,86 ----
case 'mozilla':
$viewtpl = 'backendMozilla.tpl';
! $ary['target'] = '_content';
break;
case 'opml':
***************
*** 108,112 ****
}
! // Make a target (only used by JS and JSdata)
if(empty($ary['target'])) {
$ary['target'] = '_self';
--- 108,112 ----
}
! // Make a target (only used by Mozilla,JS and JSdata)
if(empty($ary['target'])) {
$ary['target'] = '_self';
Index: article.php3
===================================================================
RCS file: /cvsroot/phpslash/phpslash-ft/public_html/article.php3,v
retrieving revision 1.61
retrieving revision 1.62
diff -C2 -d -r1.61 -r1.62
*** article.php3 16 Mar 2002 23:03:23 -0000 1.61
--- article.php3 23 Mar 2002 14:12:28 -0000 1.62
***************
*** 169,173 ****
$updatearticlehits = $_PSL["article_updatehits"];
! if ($updatearticlehits) {
$q = "UPDATE psl_story
SET hits = hits + 1
--- 169,174 ----
$updatearticlehits = $_PSL["article_updatehits"];
! if (($updatearticlehits) AND
! (is_int($story_id)) ) {
$q = "UPDATE psl_story
SET hits = hits + 1
***************
*** 185,190 ****
} else {
slashhead("Article",$xsiteobject);
! titlebar("100%", "I´m sorry, no Article Number $story_id found.");
! echo "<BR><BR>Maybe you're looking for a Poll? Try this <A HREF=\"" . $_PSL['rooturl'] . "/poll.php3?submit=viewbooth&question_id=$story_id\">link</A>.<BR><BR>\n";
echo "If that doesn't work, then use the <a href=\"" . $_PSL['rooturl'] . "/search.php3\">Search</A> Page.";
slashfoot();
--- 186,191 ----
} else {
slashhead("Article",$xsiteobject);
! titlebar("100%", "I´m sorry, no Article Number ".htmlentities($story_id)." found.");
! echo "<BR><BR>Maybe you're looking for a Poll? Try this <A HREF=\"" . $_PSL['rooturl'] . "/poll.php3?submit=viewbooth&question_id=".htmlentities($story_id)."\">link</A>.<BR><BR>\n";
echo "If that doesn't work, then use the <a href=\"" . $_PSL['rooturl'] . "/search.php3\">Search</A> Page.";
slashfoot();
|
