Revision 40
Added by stefan about 19 years ago
| save.php | ||
|---|---|---|
| 1 | 1 |
<?php |
| 2 | 2 |
|
| 3 |
// $Id: save.php,v 1.2 2005/04/02 06:25:55 rdjurovich Exp $
|
|
| 3 |
// $Id$ |
|
| 4 | 4 |
|
| 5 | 5 |
/* |
| 6 | 6 |
|
| ... | ... | |
| 33 | 33 |
if(isset($_POST['content'])) {
|
| 34 | 34 |
$tags = array('<?php', '?>', '<?');
|
| 35 | 35 |
$blanks = array('','','');
|
| 36 |
$content = addslashes(str_replace($tags, $blanks, $_POST['content']));
|
|
| 36 |
$content = $admin->add_slashes(str_replace($tags, $blanks, $_POST['content']));
|
|
| 37 | 37 |
$database = new database(); |
| 38 | 38 |
$query = "UPDATE ".TABLE_PREFIX."mod_code SET content = '$content' WHERE section_id = '$section_id'"; |
| 39 | 39 |
$database->query($query); |
Also available in: Unified diff
Change addslashes,stripslashes to (wb class) method calls add_slashes,strip_slashes