fix for KTS-1134: quotes are eaten by the "edit" boxes.

git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@5995 c91229c3-7414-0410-bfa2-8a42b809f60b

fix for KTS-1134: quotes are eaten by the "edit" boxes.
git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@5995 c91229c3-7414-0410-bfa2-8a42b809f60b
Brad Shuttleworth
1 parent 0ffca3d4
Showing 5 changed files with 6 additions and 6 deletions
templates/kt3/fields/base.smarty
templates/ktcore/boolean_search_edit.smarty
templates/ktcore/forms/widgets/selection.smarty
templates/ktcore/forms/widgets/string.smarty
templates/ktcore/forms/widgets/text.smarty
@@ -11,5 +11,5 @@
       <p class="errorMessage"></p>
       {/if}
  
-      <input type="text" name="{$name}" {if $has_id}id="{$id}"{/if} {if $has_value}value="{$value}"{/if}{if ($options.autocomplete === false)}autocomplete="off"{/if}  {if $options.width}size="{$options.width}"{/if} /><input type="hidden" name="kt_core_fieldsets_expect[{$name}]" value ="1"  />
+      <input type="text" name="{$name}" {if $has_id}id="{$id}"{/if} {if $has_value}value="{$value|htmlentities}"{/if}{if ($options.autocomplete === false)}autocomplete="off"{/if}  {if $options.width}size="{$options.width}"{/if} /><input type="hidden" name="kt_core_fieldsets_expect[{$name}]" value ="1"  />
      </div>
@@ -62,7 +62,7 @@ legend { border: 1px dotted #999;}
     <input type="hidden" name="action" value="updateSearch" />
 	<input type="hidden" name="fSavedSearchId" value="{$iSearchId}" />
 {if $sNameTitle}
-    {$sNameTitle}: <input type="text" name="name" value="{$old_name}" /> <br />
+    {$sNameTitle}: <input type="text" name="name" value="{$old_name|htmlentities}" /> <br />
 {/if}
  
 {capture assign=options}
@@ -6,11 +6,11 @@
     {if $options.multi}multiple="true"{/if} 
     >
     {if $options.initial_string}
-    <option value="">{$options.initial_string}</option>
+    <option value="">{$options.initial_string|htmlentities}</option>
     {/if}    
   {foreach item=lookup key=lookup_key from=$vocab}
  
-       <option value="{$lookup_key}" {if ($value == $lookup_key)}selected="selected"{/if}>{$lookup}</option>
+       <option value="{$lookup_key|htmlentities}" {if ($value == $lookup_key)}selected="selected"{/if}>{$lookup|htmlentities}</option>
   {/foreach}
   </select>
 {/if}
-  <input type="text" name="{$name}" {if $has_id}id="{$id}"{/if} {if $has_value}value="{$value}"{/if}{if ($options.autocomplete === false)}autocomplete="off"{/if}  {if $options.width}size="{$options.width}"{/if} />
+  <input type="text" name="{$name}" {if $has_id}id="{$id}"{/if} {if $has_value}value="{$value|htmlentities}"{/if}{if ($options.autocomplete === false)}autocomplete="off"{/if}  {if $options.width}size="{$options.width}"{/if} />
@@ -2,4 +2,4 @@
         {if $has_id} id="{$id}"{/if}
         {if $options.rows} rows="{$options.rows}"{else} rows="7"{/if}
         {if $options.cols} cols="{$options.cols}"{else} cols="45"{/if}
-      >{if $has_value}{$value}{/if}</textarea>
+      >{if $has_value}{$value|htmlentities}{/if}</textarea>