[Fusionforge-commits] r9049 - trunk/gforge/www/news/admin

Alain Peyrat aljeux at libremir.placard.fr.eu.org
Fri Mar 12 15:59:27 CET 2010


Author: aljeux
Date: 2010-03-12 15:59:27 +0100 (Fri, 12 Mar 2010)
New Revision: 9049

Modified:
   trunk/gforge/www/news/admin/index.php
Log:
Removed addslashes()

Modified: trunk/gforge/www/news/admin/index.php
===================================================================
--- trunk/gforge/www/news/admin/index.php	2010-03-12 14:59:20 UTC (rev 9048)
+++ trunk/gforge/www/news/admin/index.php	2010-03-12 14:59:27 UTC (rev 9049)
@@ -81,7 +81,7 @@
 			$sanitizer = new TextSanitizer();
 			$details = $sanitizer->SanitizeHtml($details);
 			$result = db_query_params("UPDATE news_bytes SET is_approved=$1, summary=$2, 
-details=$3 WHERE id=$4 AND group_id=$5", array($status, htmlspecialchars($summary), addslashes($details), $id, $group_id));
+details=$3 WHERE id=$4 AND group_id=$5", array($status, htmlspecialchars($summary), $details, $id, $group_id));
 
 			if (!$result || db_affected_rows($result) < 1) {
 				$feedback .= _('Error On Update:');
@@ -115,7 +115,7 @@
 		
 		echo notepad_func();
 		echo '
-		<h3>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h3>
+		<h1>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h1>
 		<p />
 		<form action="'.getStringFromServer('PHP_SELF').'" method="post">
 		<input type="hidden" name="group_id" value="'.db_result($result,0,'group_id').'" />
@@ -164,12 +164,12 @@
 		$rows=db_numrows($result);
 		$group =& group_get_object($group_id);
 		
+		echo '<h1>'._('List of News Submitted for Project').': '.$group->getPublicName().'</h1>';
 		if ($rows < 1) {
 			echo '
-				<h4>'._('No Queued Items Found').': '.$group->getPublicName().'</h4>';
+				<div class="warning_msg">'._('No Queued Items Found').'</div>';
 		} else {
 			echo '
-				<h4>'._('List of News Submitted for Project').': '.$group->getPublicName().'</h4>
 				<ul>';
 			for ($i=0; $i<$rows; $i++) {
 				echo '
@@ -200,7 +200,7 @@
 				$sanitizer = new TextSanitizer();
 				$details = $sanitizer->SanitizeHtml($details);
 				$result=db_query_params("UPDATE news_bytes SET is_approved='1', post_date=$1, 
-summary=$2, details=$3 WHERE id=$4", array(time(), htmlspecialchars($summary), addslashes($details), $id));
+summary=$2, details=$3 WHERE id=$4", array(time(), htmlspecialchars($summary), $details, $id));
 				if (!$result || db_affected_rows($result) < 1) {
 					$feedback .= _('Error On Update:');
 				} else {
@@ -262,7 +262,7 @@
 		$user =& user_get_object(db_result($result,0,'submitted_by'));
 
 		echo '
-		<h3>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h3>
+		<h1>'.sprintf(_('Approve a NewsByte For Project: %1$s'), $group->getPublicName()).'</h1>
 		<p />
 		<form action="'.getStringFromServer('PHP_SELF').'" method="post">
 		<input type="hidden" name="for_group" value="'.db_result($result,0,'group_id').'" />




More information about the Fusionforge-commits mailing list