Changeset 1145

Timestamp:

06/16/2008 08:36:37 AM (2 years ago)

Author:

DotMG

Message:

refs #749

Applying htmlspecialchars_ent() to some strings to ensure XHTML validation.

Files:

• branches/1.1.6.5/actions/feedback.php (modified) (1 diff)

branches/1.1.6.5/actions/feedback.php

@@ -14 +14 @@
 $form = "<p>Fill in the form below to send us your comments:</p>".
             $this->FormOpen().
-            "\nName: <input name=\"name\" value=\"".$name."\" type=\"text\" /><br />".
+            "\nName: <input name=\"name\" value=\"".$this->htmlspecialchars_ent($name)."\" type=\"text\" /><br />".
             "\n<input type=\"hidden\" name=\"mail\" value=\"result\">".
-            "\nEmail: <input name=\"email\" value=\"".$email."\" type=\"text\" /><br />".
-            "\nComments:<br />\n<textarea name=\"comments\" rows=\"15\" cols=\"40\">".$comments."</textarea><br / >".
+            "\nEmail: <input name=\"email\" value=\"".$this->htmlspecialchars_ent($email)."\" type=\"text\" /><br />".
+            "\nComments:<br />\n<textarea name=\"comments\" rows=\"15\" cols=\"40\">".$this->htmlspecialchars_ent($comments)."</textarea><br / >".
             "\n<input type=\"submit\" value=\"Send\" />".
             $this->FormClose();