onokazu
onoka****@users*****
2005年 9月 5日 (月) 05:46:11 JST
Index: xoops2jp/html/modules/system/admin/preferences/main.php
diff -u xoops2jp/html/modules/system/admin/preferences/main.php:1.4 xoops2jp/html/modules/system/admin/preferences/main.php:1.5
--- xoops2jp/html/modules/system/admin/preferences/main.php:1.4 Wed Aug 3 21:39:17 2005
+++ xoops2jp/html/modules/system/admin/preferences/main.php Mon Sep 5 05:46:11 2005
@@ -1,5 +1,5 @@
<?php
-// $Id: main.php,v 1.4 2005/08/03 12:39:17 onokazu Exp $
+// $Id: main.php,v 1.5 2005/09/04 20:46:11 onokazu Exp $
// ------------------------------------------------------------------------ //
// XOOPS - PHP Content Management System //
// Copyright (c) 2000 XOOPS.org //
@@ -139,7 +139,7 @@
$tplsetlist =& $tplset_handler->getList();
asort($tplsetlist);
foreach ($tplsetlist as $key => $name) {
- $ele->addOption($key, $name);
+ $ele->addOption($key, htmlspecialchars($name, ENT_QUOTES));
}
// old theme value is used to determine whether to update cache or not. kind of dirty way
$form->addElement(new XoopsFormHidden('_old_theme', $config[$i]->getConfValueForOutput()));
@@ -262,6 +262,9 @@
if ($config[$i]->getVar('conf_valuetype') == 'array') {
// this is exceptional.. only when value type is arrayneed a smarter way for this
$ele = ($config[$i]->getVar('conf_value') != '') ? new XoopsFormTextArea($title, $config[$i]->getVar('conf_name'), $myts->htmlspecialchars(implode('|', $config[$i]->getConfValueForOutput())), 5, 50) : new XoopsFormTextArea($title, $config[$i]->getVar('conf_name'), '', 5, 50);
+ } elseif ($config[$i]->getVar('conf_valuetype') == 'textarea') {
+ // another exception for textarea value type..
+ $ele = new XoopsFormTextArea($title, $config[$i]->getVar('conf_name'), $config[$i]->getVar('conf_value', 'e'), 5, 50);
} else {
$ele = new XoopsFormTextArea($title, $config[$i]->getVar('conf_name'), $myts->htmlspecialchars($config[$i]->getConfValueForOutput()), 5, 50);
}