[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Phpgroupware-cvs] preferences/inc/class.uicategories.inc.php, 1.2.2.8.2
|
From: |
nomail |
|
Subject: |
[Phpgroupware-cvs] preferences/inc/class.uicategories.inc.php, 1.2.2.8.2.5 |
|
Date: |
Tue, 21 Dec 2004 22:53:39 +0100 |
Update of /preferences/inc
Modified Files:
Branch: Version-0_9_16-branch
class.uicategories.inc.php
date: 2004/12/21 21:53:39; author: ceb; state: Exp; lines: +13 -11
Log Message:
sec bugfix
=====================================================================
Index: preferences/inc/class.uicategories.inc.php
diff -u preferences/inc/class.uicategories.inc.php:1.2.2.8.2.4
preferences/inc/class.uicategories.inc.php:1.2.2.8.2.5
--- preferences/inc/class.uicategories.inc.php:1.2.2.8.2.4 Sun Dec 19
18:10:26 2004
+++ preferences/inc/class.uicategories.inc.php Tue Dec 21 21:53:39 2004
@@ -95,8 +95,8 @@
{
$cats_app =
strip_tags(get_var('cats_app',array('GET','POST')));
$extra =
strip_tags(get_var('extra',array('GET','POST')));
- $global_cats =
strip_tags(get_var('global_cats',array('GET','POST')));
- $cats_level =
strip_tags(get_var('cats_level',array('GET','POST')));
+ $global_cats =
get_var('global_cats',array('GET','POST'));
+ $cats_level =
get_var('cats_level',array('GET','POST'));
$link_data = array
@@ -267,6 +267,8 @@
$GLOBALS['phpgw']->template->fp('list','cat_list',True);
}
$link_data['menuaction'] =
'preferences.uicategories.add';
+ unset($link_data['cat_parent']);
+ unset($link_data['cat_id']);
$GLOBALS['phpgw']->template->set_var('add_action',$GLOBALS['phpgw']->link('/index.php',$link_data));
$this->save_sessiondata($cats_app);
@@ -275,8 +277,8 @@
function add()
{
- $cats_app = get_var('cats_app',array('GET','POST'));
- $extra = get_var('extra',array('GET','POST'));
+ $cats_app =
strip_tags(get_var('cats_app',array('GET','POST')));
+ $extra =
strip_tags(get_var('extra',array('GET','POST')));
$global_cats =
get_var('global_cats',array('GET','POST'));
$cats_level =
get_var('cats_level',array('GET','POST'));
@@ -383,11 +385,11 @@
function edit()
{
- $cats_app = get_var('cats_app',array('GET','POST'));
- $extra = get_var('extra',array('GET','POST'));
+ $cats_app =
strip_tags(get_var('cats_app',array('GET','POST')));
+ $extra =
strip_tags(get_var('extra',array('GET','POST')));
$global_cats =
get_var('global_cats',array('GET','POST'));
$cats_level =
get_var('cats_level',array('GET','POST'));
- $cat_id = get_var('cat_id',array('GET','POST'));
+ $cat_id =
intval(get_var('cat_id',array('GET','POST')));
$link_data = array
(
@@ -519,11 +521,11 @@
function delete()
{
- $cats_app = get_var('cats_app',array('GET','POST'));
- $extra = get_var('extra',array('GET','POST'));
+ $cats_app =
strip_tags(get_var('cats_app',array('GET','POST')));
+ $extra =
strip_tags(get_var('extra',array('GET','POST')));
$global_cats =
get_var('global_cats',array('GET','POST'));
$cats_level =
get_var('cats_level',array('GET','POST'));
- $cat_id = get_var('cat_id',array('GET','POST'));
+ $cat_id =
intval(get_var('cat_id',array('GET','POST')));
$link_data = array
(
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Phpgroupware-cvs] preferences/inc/class.uicategories.inc.php, 1.2.2.8.2.5,
nomail <=