Changeset 1058 for trunk/upload.php
- Timestamp:
- Feb 28, 2006, 2:13:16 AM (18 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/upload.php
r1036 r1058 3 3 // | PhpWebGallery - a PHP based picture gallery | 4 4 // | Copyright (C) 2002-2003 Pierrick LE GALL - pierrick@phpwebgallery.net | 5 // | Copyright (C) 2003-200 5PhpWebGallery Team - http://phpwebgallery.net |5 // | Copyright (C) 2003-2006 PhpWebGallery Team - http://phpwebgallery.net | 6 6 // +-----------------------------------------------------------------------+ 7 7 // | branch : BSF (Best So Far) … … 126 126 $page['cat_name'] = $result['name']; 127 127 $page['cat_uploadable'] = $result['uploadable']; 128 if ( $page['cat_site_id'] != 1or !$page['cat_uploadable'])128 if ( url_is_remote($page['cat_dir']) or !$page['cat_uploadable']) 129 129 { 130 130 echo '<div style="text-align:center;">'.$lang['upload_forbidden'].'<br />'; … … 183 183 // date_creation="2004-08-14" name="" /> 184 184 $xml_infos = '<infos'; 185 $xml_infos.= ' author="'.htmlspecialchars($_POST['author'],ENT_QUOTES).'"';186 $xml_infos.= ' comment="'.htmlspecialchars($_POST['comment'],ENT_QUOTES).'"';187 $xml_infos.= ' date_creation="'.$date_creation.'"';188 $xml_infos.= ' name="'.htmlspecialchars( $_POST['name'], ENT_QUOTES).'"';185 $xml_infos.= encodeAttribute('author', $_POST['author']); 186 $xml_infos.= encodeAttribute('comment', $_POST['comment']); 187 $xml_infos.= encodeAttribute('date_creation', $date_creation); 188 $xml_infos.= encodeAttribute('name', $_POST['name']); 189 189 $xml_infos.= ' />'; 190 190
Note: See TracChangeset
for help on using the changeset viewer.