diff options
author | Andrew Dolgov <[email protected]> | 2006-05-02 07:01:27 +0100 |
---|---|---|
committer | Andrew Dolgov <[email protected]> | 2006-05-02 07:01:27 +0100 |
commit | 3fdaa0670ea2f6de0e9b1799666bdcb1015eb693 (patch) | |
tree | a8bd1b5ba946ea496729e5be3d12262ae16a9ca7 | |
parent | fef8a1e4b403dddd8063e3d513468fc87a82de58 (diff) |
fix several quote escaping issues
-rw-r--r-- | backend.php | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/backend.php b/backend.php index a9f79667b..90b18f544 100644 --- a/backend.php +++ b/backend.php @@ -896,6 +896,8 @@ $feed_title = "?"; } + $feed_title = db_unescape_string($feed_title); + if ($feed < -10) error_reporting (0); print "<div id=\"headlinesContainer\">"; @@ -2260,7 +2262,8 @@ } while ($line = db_fetch_assoc($result)) { - printf("<option id='%d'>%s</option>", $line["id"], $line["title"]); + printf("<option id='%d'>%s</option>", $line["id"], + db_unescape_string($line["title"])); } print "</select> "; @@ -2400,7 +2403,7 @@ $is_selected = ""; } printf("<option $is_selected id='%d'>%s</option>", - $tmp_line["id"], $tmp_line["title"]); + $tmp_line["id"], db_unescape_string($tmp_line["title"])); } print "</select></td>"; |