diff options
Diffstat (limited to 'src/admin')
| -rw-r--r-- | src/admin/clar.php | 4 | ||||
| -rw-r--r-- | src/admin/claredit.php | 5 | ||||
| -rw-r--r-- | src/admin/report/clar.php | 4 |
3 files changed, 6 insertions, 7 deletions
diff --git a/src/admin/clar.php b/src/admin/clar.php index 66a7b0d..9d02d11 100644 --- a/src/admin/clar.php +++ b/src/admin/clar.php @@ -92,13 +92,13 @@ for ($i=0; $i<count($clar); $i++) { echo " <td>"; // echo "<pre>" . $clar[$i]["question"] . "</pre>"; // echo $clar[$i]["question"]; - echo " <textarea name=\"m$i\" cols=\"60\" rows=\"8\" readonly>".$clar[$i]["question"]."</textarea>\n"; + echo " <textarea name=\"m$i\" cols=\"60\" rows=\"8\" readonly>". unsanitizeText($clar[$i]["question"]) ."</textarea>\n"; echo "</td>\n"; if (trim($clar[$i]["answer"]) == "") $clar[$i]["answer"] = "Not answered yet"; echo " <td>"; // echo " <pre>" . $clar[$i]["answer"] . "</pre>"; // echo $clar[$i]["answer"]; - echo " <textarea name=\"a$i\" cols=\"60\" rows=\"8\" readonly>".$clar[$i]["answer"]."</textarea>\n"; + echo " <textarea name=\"a$i\" cols=\"60\" rows=\"8\" readonly>". unsanitizeText($clar[$i]["answer"]) ."</textarea>\n"; echo "</td>\n"; echo " </tr>\n"; diff --git a/src/admin/claredit.php b/src/admin/claredit.php index 5eb812f..cf9785c 100644 --- a/src/admin/claredit.php +++ b/src/admin/claredit.php @@ -125,14 +125,13 @@ if (($a = DBChiefGetClarToAnswer($clarnumber, $clarsitenumber, <tr> <td width="20%" align=right><b>Clarification:</b></td> <td width="80%"> - <textarea name="message" readonly cols="60" rows="8"><?php echo $a["question"]; ?> - </textarea> + <textarea name="message" readonly cols="60" rows="8"><?php echo unsanitizeText($a["question"]); ?></textarea> </td> </tr> <tr> <td width="20%" align=right><b>Answer:</b></td> <td width="80%"> - <textarea name="answer" cols="60" rows="8"><?php echo $a["answer"]; ?></textarea> + <textarea name="answer" cols="60" rows="8"><?php echo unsanitizeText($a["answer"]); ?></textarea> </td> </tr> <tr> diff --git a/src/admin/report/clar.php b/src/admin/report/clar.php index 61816d9..27616d5 100644 --- a/src/admin/report/clar.php +++ b/src/admin/report/clar.php @@ -63,13 +63,13 @@ for ($i=0; $i<count($clar); $i++) { echo " <td>"; // echo "<pre>" . $clar[$i]["question"] . "</pre>"; // echo $clar[$i]["question"]; - echo " <textarea name=\"m$i\" cols=\"60\" rows=\"8\" readonly>".$clar[$i]["question"]."</textarea>\n"; + echo " <textarea name=\"m$i\" cols=\"60\" rows=\"8\" readonly>". unsanitizeText($clar[$i]["question"]) ."</textarea>\n"; echo "</td>\n"; if (trim($clar[$i]["answer"]) == "") $clar[$i]["answer"] = "Not answered yet"; echo " <td>"; // echo " <pre>" . $clar[$i]["answer"] . "</pre>"; // echo $clar[$i]["answer"]; - echo " <textarea name=\"a$i\" cols=\"60\" rows=\"8\" readonly>".$clar[$i]["answer"]."</textarea>\n"; + echo " <textarea name=\"a$i\" cols=\"60\" rows=\"8\" readonly>". unsanitizeText($clar[$i]["answer"]) ."</textarea>\n"; echo "</td>\n"; echo " </tr>\n"; |