Changeset 4304 for trunk/admin
- Timestamp:
- Nov 18, 2009, 9:07:20 PM (14 years ago)
- Location:
- trunk/admin
- Files:
-
- 9 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/admin/comments.php
r3452 r4304 161 161 else 162 162 { 163 $author_name = $row['username'];163 $author_name = stripslashes($row['username']); 164 164 } 165 165 $template->append( -
trunk/admin/history.php
r4265 r4304 260 260 while ($row = mysql_fetch_assoc($result)) 261 261 { 262 $username_of[$row['id']] = $row['username'];262 $username_of[$row['id']] = stripslashes($row['username']); 263 263 } 264 264 } -
trunk/admin/include/c13y_internal.class.php
r4265 r4304 196 196 array( 197 197 'id' => $id, 198 'username' => $name,198 'username' => addslashes($name), 199 199 'password' => $password 200 200 ), -
trunk/admin/include/functions.php
r4265 r4304 2113 2113 } 2114 2114 2115 return $username;2115 return stripslashes($username); 2116 2116 } 2117 2117 -
trunk/admin/include/functions_notification_by_mail.inc.php
r4265 r4304 289 289 290 290 $env_nbm['sent_mail_count'] += 1; 291 array_push($page['infos'], sprintf($env_nbm['msg_info'], $nbm_user['username'], $nbm_user['mail_address']));291 array_push($page['infos'], sprintf($env_nbm['msg_info'], stripslashes($nbm_user['username']), $nbm_user['mail_address'])); 292 292 } 293 293 … … 302 302 303 303 $env_nbm['error_on_mail_count'] += 1; 304 array_push($page['errors'], sprintf($env_nbm['msg_error'], $nbm_user['username'], $nbm_user['mail_address']));304 array_push($page['errors'], sprintf($env_nbm['msg_error'], stripslashes($nbm_user['username']), $nbm_user['mail_address'])); 305 305 } 306 306 … … 339 339 array 340 340 ( 341 'USERNAME' => $nbm_user['username'],341 'USERNAME' => stripslashes($nbm_user['username']), 342 342 343 343 'SEND_AS_NAME' => $env_nbm['send_as_name'], … … 428 428 if (pwg_mail 429 429 ( 430 format_email( $nbm_user['username'], $nbm_user['mail_address']),430 format_email(stripslashes($nbm_user['username']), $nbm_user['mail_address']), 431 431 array 432 432 ( … … 466 466 ); 467 467 $updated_data_count += 1; 468 array_push($page['infos'], sprintf($msg_info, $nbm_user['username'], $nbm_user['mail_address']));468 array_push($page['infos'], sprintf($msg_info, stripslashes($nbm_user['username']), $nbm_user['mail_address'])); 469 469 } 470 470 else 471 471 { 472 472 $error_on_updated_data_count += 1; 473 array_push($page['errors'], sprintf($msg_error, $nbm_user['username'], $nbm_user['mail_address']));473 array_push($page['errors'], sprintf($msg_error, stripslashes($nbm_user['username']), $nbm_user['mail_address'])); 474 474 } 475 475 -
trunk/admin/notification_by_mail.php
r4265 r4304 176 176 sprintf( 177 177 l10n('nbm_user_x_added'), 178 $nbm_user['username'],178 stripslashes($nbm_user['username']), 179 179 get_email_address_as_display_text($nbm_user['mail_address']) 180 180 ) … … 389 389 if (pwg_mail 390 390 ( 391 format_email( $nbm_user['username'], $nbm_user['mail_address']),391 format_email(stripslashes($nbm_user['username']), $nbm_user['mail_address']), 392 392 array 393 393 ( … … 666 666 if (get_boolean($nbm_user['enabled'])) 667 667 { 668 $opt_true[ $nbm_user['check_key'] ] = $nbm_user['username'].'['.get_email_address_as_display_text($nbm_user['mail_address']).']';668 $opt_true[ $nbm_user['check_key'] ] = stripslashes($nbm_user['username']).'['.get_email_address_as_display_text($nbm_user['mail_address']).']'; 669 669 if ((isset($_POST['falsify']) and isset($_POST['cat_true']) and in_array($nbm_user['check_key'], $_POST['cat_true']))) 670 670 { … … 674 674 else 675 675 { 676 $opt_false[ $nbm_user['check_key'] ] = $nbm_user['username'].'['.get_email_address_as_display_text($nbm_user['mail_address']).']';676 $opt_false[ $nbm_user['check_key'] ] = stripslashes($nbm_user['username']).'['.get_email_address_as_display_text($nbm_user['mail_address']).']'; 677 677 if (isset($_POST['trueify']) and isset($_POST['cat_false']) and in_array($nbm_user['check_key'], $_POST['cat_false'])) 678 678 { … … 719 719 !in_array($nbm_user['check_key'], $_POST['send_selection']) // not selected 720 720 ) ? '' : 'checked="checked"', 721 'USERNAME'=> $nbm_user['username'],721 'USERNAME'=> stripslashes($nbm_user['username']), 722 722 'EMAIL' => get_email_address_as_display_text($nbm_user['mail_address']), 723 723 'LAST_SEND'=> $nbm_user['last_send'] -
trunk/admin/rating.php
r4265 r4304 97 97 while ($row = mysql_fetch_assoc($result)) 98 98 { 99 $users[$row['id']]= $row['username'];99 $users[$row['id']]=stripslashes($row['username']); 100 100 } 101 101 -
trunk/admin/upload.php
r4265 r4304 178 178 'PREVIEW_URL_IMG'=>$preview_url, 179 179 'UPLOAD_EMAIL'=>get_email_address_as_display_text($row['mail_address']), 180 'UPLOAD_USERNAME'=> $row['username']180 'UPLOAD_USERNAME'=>stripslashes($row['username']) 181 181 ); 182 182 -
trunk/admin/user_list.php
r4265 r4304 703 703 'U_PROFILE' => $profile_url.$local_user['id'], 704 704 'U_PERM' => $perm_url.$local_user['id'], 705 'USERNAME' => $local_user['username']705 'USERNAME' => stripslashes($local_user['username']) 706 706 .($local_user['id'] == $conf['guest_id'] 707 707 ? '<br>['.l10n('is_the_guest').']' : '')
Note: See TracChangeset
for help on using the changeset viewer.