Changeset 846604
- Timestamp:
- 01/28/2014 01:48:37 AM (12 years ago)
- File:
-
- 1 edited
-
instruct/trunk/admin-menu.php (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
instruct/trunk/admin-menu.php
r658436 r846604 75 75 // Save text and order number for each step 76 76 $jumpto = NULL; 77 77 78 foreach($_REQUEST as $key => $value){ 78 79 if(preg_match('/text(\d+)/', $key, $number)){ 79 80 $fields = array(); 80 81 $id = $number[1]; 81 $fields['text'] = $value;82 $fields['text'] = stripcslashes($value); 82 83 $fields['picture'] = $_REQUEST['picture'.$id]; 83 84 $fields['thumbnail'] = $_REQUEST['thumbnail'.$id]; 84 85 85 86 $result = $wpdb->update($diy_step_table, 86 87 $fields, … … 108 109 } elseif (preg_match('/textnew/', $key)) { 109 110 $step_fields = array(); 110 $step_fields['text'] = $value;111 $step_fields['text'] = stripcslashes($value); 111 112 $step_fields['picture'] = $_REQUEST['picturenew']; 112 113 $step_fields['thumbnail'] = $_REQUEST['thumbnailnew']; … … 135 136 $diy_instruct_table, 136 137 array( 137 'title' => $_REQUEST['title'],138 'description' => $_REQUEST['description']138 'title' => stripcslashes($_REQUEST['title']), 139 'description' => stripcslashes($_REQUEST['description']) 139 140 ), 140 141 array(
Note: See TracChangeset
for help on using the changeset viewer.