WB 2.11.0

<?php

/**

 *

 * @category        modules

 * @package         wysiwyg

 * @author          WebsiteBaker Project

 * @copyright       WebsiteBaker Org. e.V.

 * @link            http://websitebaker.org/

 * @license         http://www.gnu.org/licenses/gpl.html

 * @platform        WebsiteBaker 2.8.3

 * @requirements    PHP 5.3.6 and higher

 * @version         $Id$

 * @filesource      $HeadURL$

 * @lastmodified    $Date$

 *

 */

/* -------------------------------------------------------- */

// Must include code to stop this file being accessed directly

if(defined('WB_PATH') == false) { die('Illegale file access /'.basename(__DIR__).'/'.basename(__FILE__).''); }

/* -------------------------------------------------------- */

// Get page content   htmlspecialchars

$sql = 'SELECT `content` FROM `'.TABLE_PREFIX.'mod_wysiwyg` WHERE `section_id`='.(int)$section_id;

if ( ($content = $database->get_one($sql)) ) {

    $sFilterApi = WB_PATH.'/modules/output_filter/OutputFilterApi.php';

    if (is_readable($sFilterApi)) {

        require_once($sFilterApi);

        $content = OutputFilterApi('ReplaceSysvar', $content);

    }

    $content = htmlspecialchars($content);

} else {

    $content = '';

}

if(mb_detect_encoding($content, 'UTF-8, '.strtoupper(DEFAULT_CHARSET)) === 'UTF-8'){

  # der String ist in UTF-8 kodiert

//$content = (utf8_decode($content));

//$content = (iconv("UTF-8", strtoupper(DEFAULT_CHARSET), $content));

}

//  $content = utf8_decode($content);

if(!isset($wysiwyg_editor_loaded)) {

    $wysiwyg_editor_loaded=true;

    if (!defined('WYSIWYG_EDITOR') OR WYSIWYG_EDITOR=="none" OR !file_exists(WB_PATH.'/modules/'.WYSIWYG_EDITOR.'/include.php')) {

        function show_wysiwyg_editor($name,$id,$content,$width,$height) {

            echo '<textarea name="'.$name.'" id="'.$id.'" style="width: '.$width.'; height: '.$height.';">'.$content.'</textarea>';

        }

    } else {

        $id_list = array();

        $sql  = 'SELECT `section_id` FROM `'.TABLE_PREFIX.'sections` ';

        $sql .= 'WHERE `page_id`='.(int)$page_id.' AND `module`=\'wysiwyg\'';

        if (($query_wysiwyg = $database->query($sql))) {

            while($wysiwyg_section = $query_wysiwyg->fetchRow( MYSQLI_ASSOC )) {

                $entry='content'.$wysiwyg_section['section_id'];

                $id_list[] = $entry;

            }

            require(WB_PATH.'/modules/'.WYSIWYG_EDITOR.'/include.php');

        }

    }

}

?>

<form name="wysiwyg<?php echo $section_id; ?>" action="<?php echo WB_URL; ?>/modules/wysiwyg/save.php" method="post">

    <input type="hidden" name="page_id" value="<?php echo $page_id; ?>" />

    <input type="hidden" name="section_id" value="<?php echo $section_id; ?>" />

<?php

echo $admin->getFTAN()."\n";

show_wysiwyg_editor('content'.$section_id,'content'.$section_id,$content,'100%','350', false);

?>

    <table  style="padding-bottom: 10px; width: 100%;">

        <tr>

            <td style="text-align: left;margin-left: 1em;">

                <input name="modify" type="submit" value="<?php echo $TEXT['SAVE']; ?>" style="min-width: 100px; margin-top: 5px;" />

                <input name="pagetree" type="submit" value="<?php echo $TEXT['SAVE'].' &amp; '.$TEXT['BACK']; ?>" style="min-width: 100px; margin-top: 5px;" />

            </td>

            <td style="text-align: right;margin-right: 1em;">

                <input name="cancel" type="button" value="<?php echo $TEXT['CANCEL']; ?>" onclick="window.location = 'index.php';" style="min-width: 100px; margin-top: 5px;" />

            </td>

        </tr>

    </table>

</form>

<br />