Revision 156
Added by stefan about 19 years ago
| save.php | ||
|---|---|---|
| 527 | 527 |
$database->query($insert_admin_user); |
| 528 | 528 |
|
| 529 | 529 |
// Search header |
| 530 |
$search_header = addslashes('
|
|
| 530 |
$search_header = add_slashes('
|
|
| 531 | 531 |
<h1>Search</h1> |
| 532 | 532 |
|
| 533 | 533 |
<form name="search" action="[WB_URL]/search/index[PAGE_EXTENSION]" method="post"> |
| ... | ... | |
| 559 | 559 |
$insert_search_header = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'header', '$search_header', '')";
|
| 560 | 560 |
$database->query($insert_search_header); |
| 561 | 561 |
// Search footer |
| 562 |
$search_footer = addslashes('');
|
|
| 562 |
$search_footer = add_slashes('');
|
|
| 563 | 563 |
$insert_search_footer = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'footer', '$search_footer', '')";
|
| 564 | 564 |
$database->query($insert_search_footer); |
| 565 | 565 |
// Search results header |
| 566 |
$search_results_header = addslashes(''.
|
|
| 566 |
$search_results_header = add_slashes(''.
|
|
| 567 | 567 |
'[TEXT_RESULTS_FOR] \'<b>[SEARCH_STRING]</b>\': |
| 568 | 568 |
<table cellpadding="2" cellspacing="0" border="0" width="100%" style="padding-top: 10px;">'); |
| 569 | 569 |
$insert_search_results_header = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'results_header', '$search_results_header', '')";
|
| 570 | 570 |
$database->query($insert_search_results_header); |
| 571 | 571 |
// Search results loop |
| 572 |
$search_results_loop = addslashes(''.
|
|
| 572 |
$search_results_loop = add_slashes(''.
|
|
| 573 | 573 |
'<tr style="background-color: #F0F0F0;"> |
| 574 | 574 |
<td><a href="[LINK]">[TITLE]</a></td> |
| 575 | 575 |
<td align="right">[TEXT_LAST_UPDATED_BY] [DISPLAY_NAME] ([USERNAME]) [TEXT_ON] [DATE]</td> |
| ... | ... | |
| 578 | 578 |
$insert_search_results_loop = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'results_loop', '$search_results_loop', '')";
|
| 579 | 579 |
$database->query($insert_search_results_loop); |
| 580 | 580 |
// Search results footer |
| 581 |
$search_results_footer = addslashes("</table>");
|
|
| 581 |
$search_results_footer = add_slashes("</table>");
|
|
| 582 | 582 |
$insert_search_results_footer = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'results_footer', '$search_results_footer', '')";
|
| 583 | 583 |
$database->query($insert_search_results_footer); |
| 584 | 584 |
// Search no results |
| 585 |
$search_no_results = addslashes('<br />No results found');
|
|
| 585 |
$search_no_results = add_slashes('<br />No results found');
|
|
| 586 | 586 |
$insert_search_no_results = "INSERT INTO `".TABLE_PREFIX."search` VALUES ('', 'no_results', '$search_no_results', '')";
|
| 587 | 587 |
$database->query($insert_search_no_results); |
| 588 | 588 |
// Search template |
Also available in: Unified diff
Replaced addslashes by magic_quotes aware add_slashes in install/save.php