Revision 1600
Added by Dietmar almost 13 years ago
save.php | ||
---|---|---|
40 | 40 |
$content = $_POST['content'.$section_id]; |
41 | 41 |
if(version_compare(PHP_VERSION, '5.3.0', '<')) |
42 | 42 |
{ |
43 |
if(get_magic_quotes_gpc()) { |
|
44 |
$content = $admin->strip_slashes($_POST['content'.$section_id]); |
|
45 |
} |
|
43 |
$content = $admin->strip_slashes($_POST['content'.$section_id]); |
|
46 | 44 |
} |
47 | 45 |
$searchfor = '@(<[^>]*=\s*")('.preg_quote($sMediaUrl).')([^">]*".*>)@siU'; |
48 | 46 |
$content = preg_replace($searchfor, '$1{SYSVAR:MEDIA_REL}$3', $content); |
49 | 47 |
// searching in $text will be much easier this way |
50 |
$content = addslashes($content);
|
|
48 |
$content = mysql_real_escape_string ($content);
|
|
51 | 49 |
$text = umlauts_to_entities($content, strtoupper(DEFAULT_CHARSET), 0); |
52 | 50 |
$sql = 'UPDATE `'.TABLE_PREFIX.'mod_wysiwyg` '; |
53 | 51 |
$sql .= 'SET `content`=\''.$content.'\', `text`=\''.$text.'\' '; |
Also available in: Unified diff
more fixed issues with get_magic_quotes_gpc and FCKeditor
remove create and upload in FCKeditor Filemanager