Revision 42
Added by stefan about 19 years ago
| index.php | ||
|---|---|---|
| 45 | 45 |
$results = $database->query($query); |
| 46 | 46 |
while($setting = $results->fetchRow()) {
|
| 47 | 47 |
$setting_name = $setting['name']; |
| 48 |
$setting_value = htmlspecialchars($admin->strip_slashes($setting['value'])); |
|
| 48 |
$setting_value = htmlspecialchars($admin->strip_slashes_dummy($setting['value']));
|
|
| 49 | 49 |
switch($setting_name) {
|
| 50 | 50 |
// Website title |
| 51 | 51 |
case 'title': |
| ... | ... | |
| 79 | 79 |
$results = $database->query($query); |
| 80 | 80 |
while($setting = $results->fetchRow()) {
|
| 81 | 81 |
$setting_name = $setting['name']; |
| 82 |
$setting_value = htmlspecialchars($admin->strip_slashes($setting['value'])); |
|
| 82 |
$setting_value = htmlspecialchars($admin->strip_slashes_dummy($setting['value']));
|
|
| 83 | 83 |
switch($setting_name) {
|
| 84 | 84 |
// Search header |
| 85 | 85 |
case 'header': |
| ... | ... | |
| 463 | 463 |
} |
| 464 | 464 |
|
| 465 | 465 |
// Insert WYSIWYG style value into template |
| 466 |
$template->set_var('WYSIWYG_STYLE', $admin->strip_slashes(WYSIWYG_STYLE));
|
|
| 466 |
$template->set_var('WYSIWYG_STYLE', $admin->strip_slashes_dummy(WYSIWYG_STYLE));
|
|
| 467 | 467 |
|
| 468 | 468 |
// Insert Server Email value into template |
| 469 | 469 |
$template->set_var('SERVER_EMAIL', SERVER_EMAIL);
|
Also available in: Unified diff
Changed most occurrences of strip_slashes to new dummy method strip_slashes_dummy.