Commit 11cd0724f190c9c8d6dd4955f0138a177c4e3419
1 parent
36973381
Added functionality to strip slashes from db results
git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@776 c91229c3-7414-0410-bfa2-8a42b809f60b
Showing
2 changed files
with
7 additions
and
5 deletions
lib/visualpatterns/PatternListFromQuery.inc
| ... | ... | @@ -94,14 +94,14 @@ class PatternListFromQuery { |
| 94 | 94 | switch ($this->aColumnTypes[$i]) { |
| 95 | 95 | //plain text field |
| 96 | 96 | case 1: |
| 97 | - $sToRender .= "<td>" . $this->aColumnNames[$i] . "</td><td>" . $sql->f($this->aColumns[$i]) . "</td>\n"; | |
| 97 | + $sToRender .= "<td>" . $this->aColumnNames[$i] . "</td><td>" . stripslashes($sql->f($this->aColumns[$i])) . "</td>\n"; | |
| 98 | 98 | break; |
| 99 | 99 | //text area |
| 100 | 100 | case 2: |
| 101 | 101 | $sToRender .= "<td>" . $this->aColumnNames[$i] . "</td><td><textarea cols=$this->iTextAreaColumns rows=$this->iTextAreaRows READONLY>" . $sql->f($this->aColumns[$i]) . "</textarea></td>\n"; |
| 102 | 102 | break; |
| 103 | 103 | case 3: |
| 104 | - $sToRender .= "<td>" . $this->aColumnNames[$i] . "</b></td><td><a href=\"" . $this->aHyperLinkURL[$i] . "?" . $this->replaceValues($this->aQueryStringText[$i], $sql) . "\">" . $sql->f($this->aColumns[$i]) . "</a></td>\n"; | |
| 104 | + $sToRender .= "<td>" . $this->aColumnNames[$i] . "</b></td><td><a href=\"" . $this->aHyperLinkURL[$i] . "?" . $this->replaceValues($this->aQueryStringText[$i], $sql) . "\">" . stripslashes($sql->f($this->aColumns[$i])) . "</a></td>\n"; | |
| 105 | 105 | break; |
| 106 | 106 | default: |
| 107 | 107 | break; | ... | ... |
lib/visualpatterns/PatternTableSqlQuery.inc
| ... | ... | @@ -119,19 +119,21 @@ class PatternTableSqlQuery { |
| 119 | 119 | for ($i = 0; $i < count($this->aColumns); $i++) { |
| 120 | 120 | switch ($this->aColumnTypes[$i]) { |
| 121 | 121 | case 1: |
| 122 | + //text | |
| 122 | 123 | $sToRender .= "<td>"; |
| 123 | 124 | if (isset($this->sImageURL)) { |
| 124 | 125 | $sToRender .= $this->generateImageURL($this->sImageURL); |
| 125 | 126 | } else if ($this->bUseImageURLFromQuery) { |
| 126 | 127 | $sToRender .= $this->generateImageURL($sql->f("image_url")); |
| 127 | 128 | } |
| 128 | - if ($sql->f($this->aColumns[$i] != null)) { | |
| 129 | - $sToRender .= $sql->f($this->aColumns[$i]) . "</td>"; | |
| 129 | + if ($sql->f($this->aColumns[$i] != null)) { | |
| 130 | + $sToRender .= stripslashes($sql->f($this->aColumns[$i])) . "</td>"; | |
| 130 | 131 | } else { |
| 131 | 132 | $sToRender .= " </td>"; |
| 132 | 133 | } |
| 133 | 134 | break; |
| 134 | 135 | case 3: |
| 136 | + //hyperlink | |
| 135 | 137 | $sToRender .= "<td><a href=\"" . $this->sLinkURL; |
| 136 | 138 | for ($j = 0; $j < count($this->aDBQueryStringColumns); $j++) { |
| 137 | 139 | if (strpos($sToRender, "?") === false) { |
| ... | ... | @@ -147,7 +149,7 @@ class PatternTableSqlQuery { |
| 147 | 149 | } else if ($this->bUseImageURLFromQuery) { |
| 148 | 150 | $sToRender .= $this->generateImageURL($sql->f("image_url")); |
| 149 | 151 | } |
| 150 | - $sToRender .= $sql->f($this->aColumns[$i]) . "</a></td>\n"; | |
| 152 | + $sToRender .= stripslashes($sql->f($this->aColumns[$i])) . "</a></td>\n"; | |
| 151 | 153 | break; |
| 152 | 154 | default: |
| 153 | 155 | break; | ... | ... |