[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Fmsystem-commits] [15974] escaping values
From: |
sigurdne |
Subject: |
[Fmsystem-commits] [15974] escaping values |
Date: |
Wed, 9 Nov 2016 13:54:09 +0000 (UTC) |
Revision: 15974
http://svn.sv.gnu.org/viewvc/?view=rev&root=fmsystem&revision=15974
Author: sigurdne
Date: 2016-11-09 13:54:09 +0000 (Wed, 09 Nov 2016)
Log Message:
-----------
escaping values
Modified Paths:
--------------
trunk/property/inc/class.sogeneric_.inc.php
Modified: trunk/property/inc/class.sogeneric_.inc.php
===================================================================
--- trunk/property/inc/class.sogeneric_.inc.php 2016-11-09 13:53:26 UTC (rev
15973)
+++ trunk/property/inc/class.sogeneric_.inc.php 2016-11-09 13:54:09 UTC (rev
15974)
@@ -536,7 +536,7 @@
$cols = array();
$vals = array();
- $data['descr'] =
$this->_db->db_addslashes($data['descr']);
+ $data['descr'] =
$this->_db->db_addslashes(html_entity_decode($value));
if (isset($data['extra']))
{
@@ -556,7 +556,7 @@
if (isset($value) && $value)
{
$cols[] = $input_name;
- $vals[] =
$this->_db->db_addslashes($value);
+ $vals[] =
$this->_db->db_addslashes(html_entity_decode($value));
}
}
@@ -568,7 +568,7 @@
if (isset($value) && $value)
{
$cols[] = $input_name;
- $vals[] = $value;
+ $vals[] =
$this->_db->db_addslashes(html_entity_decode($value));
}
}
}
@@ -674,7 +674,7 @@
$data[$field['name']] = ',' .
implode(',', $data[$field['name']]) . ',';
}
}
- $value_set[$field['name']] =
$this->_db->db_addslashes($data[$field['name']]);
+ $value_set[$field['name']] =
$this->_db->db_addslashes(html_entity_decode($data[$field['name']]));
// keep hierarchy in order
if (isset($field['role']) && $field['role'] ==
'parent')
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Fmsystem-commits] [15974] escaping values,
sigurdne <=