[Fusionforge-commits] r9049 - trunk/gforge/www/news/admin
Alain Peyrat
aljeux at libremir.placard.fr.eu.org
Fri Mar 12 15:59:27 CET 2010
Author: aljeux
Date: 2010-03-12 15:59:27 +0100 (Fri, 12 Mar 2010)
New Revision: 9049
Modified:
trunk/gforge/www/news/admin/index.php
Log:
Removed addslashes()
Modified: trunk/gforge/www/news/admin/index.php
===================================================================
--- trunk/gforge/www/news/admin/index.php 2010-03-12 14:59:20 UTC (rev 9048)
+++ trunk/gforge/www/news/admin/index.php 2010-03-12 14:59:27 UTC (rev 9049)
@@ -81,7 +81,7 @@
$sanitizer = new TextSanitizer();
$details = $sanitizer->SanitizeHtml($details);
$result = db_query_params("UPDATE news_bytes SET is_approved=$1, summary=$2,
-details=$3 WHERE id=$4 AND group_id=$5", array($status, htmlspecialchars($summary), addslashes($details), $id, $group_id));
+details=$3 WHERE id=$4 AND group_id=$5", array($status, htmlspecialchars($summary), $details, $id, $group_id));
if (!$result || db_affected_rows($result) < 1) {
$feedback .= _('Error On Update:');
@@ -115,7 +115,7 @@
echo notepad_func();
echo '
- <h3>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h3>
+ <h1>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h1>
<p />
<form action="'.getStringFromServer('PHP_SELF').'" method="post">
<input type="hidden" name="group_id" value="'.db_result($result,0,'group_id').'" />
@@ -164,12 +164,12 @@
$rows=db_numrows($result);
$group =& group_get_object($group_id);
+ echo '<h1>'._('List of News Submitted for Project').': '.$group->getPublicName().'</h1>';
if ($rows < 1) {
echo '
- <h4>'._('No Queued Items Found').': '.$group->getPublicName().'</h4>';
+ <div class="warning_msg">'._('No Queued Items Found').'</div>';
} else {
echo '
- <h4>'._('List of News Submitted for Project').': '.$group->getPublicName().'</h4>
<ul>';
for ($i=0; $i<$rows; $i++) {
echo '
@@ -200,7 +200,7 @@
$sanitizer = new TextSanitizer();
$details = $sanitizer->SanitizeHtml($details);
$result=db_query_params("UPDATE news_bytes SET is_approved='1', post_date=$1,
-summary=$2, details=$3 WHERE id=$4", array(time(), htmlspecialchars($summary), addslashes($details), $id));
+summary=$2, details=$3 WHERE id=$4", array(time(), htmlspecialchars($summary), $details, $id));
if (!$result || db_affected_rows($result) < 1) {
$feedback .= _('Error On Update:');
} else {
@@ -262,7 +262,7 @@
$user =& user_get_object(db_result($result,0,'submitted_by'));
echo '
- <h3>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h3>
+ <h1>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h1>
<p />
<form action="'.getStringFromServer('PHP_SELF').'" method="post">
<input type="hidden" name="for_group" value="'.db_result($result,0,'group_id').'" />
More information about the Fusionforge-commits
mailing list