Revision 396
Added by Matthias almost 18 years ago
| class.frontend.php | ||
|---|---|---|
| 139 | 139 |
// Page ID |
| 140 | 140 |
define('PAGE_ID', $this->page['page_id']);
|
| 141 | 141 |
// Page Title |
| 142 |
define('PAGE_TITLE', ($this->page['page_title']));
|
|
| 142 |
define('PAGE_TITLE', htmlentities(($this->page['page_title'])));
|
|
| 143 | 143 |
$this->page_title=PAGE_TITLE; |
| 144 | 144 |
// Menu Title |
| 145 |
$menu_title = ($this->page['menu_title']); |
|
| 145 |
$menu_title = htmlentities($this->page['menu_title']);
|
|
| 146 | 146 |
if($menu_title != '') {
|
| 147 | 147 |
define('MENU_TITLE', $menu_title);
|
| 148 | 148 |
} else {
|
| ... | ... | |
| 353 | 353 |
$link = $this->page_link($page['link']); |
| 354 | 354 |
} |
| 355 | 355 |
// Create values |
| 356 |
$values = array($class,'<a href="'.$link.'" target="'.$page['target'].'" '.$class.'>', '</a>', ($page['menu_title']), ($page['page_title']));
|
|
| 356 |
$values = array($class,'<a href="'.$link.'" target="'.$page['target'].'" '.$class.'>', '</a>', htmlentities($page['menu_title']), htmlentities($page['page_title']));
|
|
| 357 | 357 |
// Replace vars with value and print |
| 358 | 358 |
echo "\n".str_replace($vars, $values, $this->menu_item_template); |
| 359 | 359 |
// Generate sub-menu |
Also available in: Unified diff
Fixed problem with Page Title has to be escaped (#287)