Changeset 1723

Timestamp:

06/03/07 12:29:50 (18 months ago)

Author:

mbonetti

Message:

more tag-fixing, in the admin, this time

Files:

• trunk/gregarius/admin/tags.php (modified) (2 diffs)

trunk/gregarius/admin/tags.php

@@ -149 +149 @@
         echo "<tr class=\"$class_\">\n"
     ."\t<td><input type=\"checkbox\" name=\"tcb$id\" value=\"$id\" id=\"scb_$id\" /></td>\n"
-        ."\t<td><label for=\"scb_$id\">$tag</label></td>\n"
+        ."\t<td><label for=\"scb_$id\">".htmlspecialchars($tag)."</label></td>\n"
         ."\t<td><a href=\"".$_SERVER['PHP_SELF']. "?".CST_ADMIN_DOMAIN."=". CST_ADMIN_DOMAIN_TAGS
         ."&amp;action=". CST_ADMIN_EDIT_ACTION. "&amp;id=$id\">" . __('edit')
@@ -155 +155 @@
         ."|<a href=\"".$_SERVER['PHP_SELF']. "?".CST_ADMIN_DOMAIN."=". CST_ADMIN_DOMAIN_TAGS
         ."&amp;action=". CST_ADMIN_DELETE_ACTION ."&amp;id=$id\">" . __('delete') ."</a>\n"
-        ."|<a href=\"".getPath('tag/'.$tag)."\">" . __('view') ."</a>\n"        
+        ."|<a href=\"".getPath('tag/'.htmlspecialchars($tag))."\">" . __('view') ."</a>\n"      
         ."</td>\n"
         ."</tr>\n";