Revision 656
Added by thorn almost 17 years ago
| details.php | ||
|---|---|---|
| 30 | 30 |
|
| 31 | 31 |
// Get entered values |
| 32 | 32 |
$display_name = $wb->add_slashes(strip_tags($wb->get_post('display_name')));
|
| 33 |
$language = $wb->get_post('language');
|
|
| 34 |
$timezone = $wb->get_post('timezone')*60*60;
|
|
| 35 |
$date_format = $wb->get_post('date_format');
|
|
| 36 |
$time_format = $wb->get_post('time_format');
|
|
| 33 |
$language = $wb->get_post_escaped('language');
|
|
| 34 |
$timezone = $wb->get_post_escaped('timezone')*60*60;
|
|
| 35 |
$date_format = $wb->get_post_escaped('date_format');
|
|
| 36 |
$time_format = $wb->get_post_escaped('time_format');
|
|
| 37 | 37 |
|
| 38 | 38 |
// Create a javascript back link |
| 39 | 39 |
$js_back = "javascript: history.go(-1);"; |
Also available in: Unified diff
Added some missing add_slashes(), get_post_escaped(), and strip_tags() for $_POST, $_GET and $_REQUEST-data. Also for $_SERVER['PHP_SELF'].