[pLog-svn] r972 - plog/trunk/templates/admin

mark at devel.plogworld.net mark at devel.plogworld.net
Sun Feb 6 16:44:33 GMT 2005


Author: mark
Date: 2005-02-06 16:44:33 +0000 (Sun, 06 Feb 2005)
New Revision: 972

Modified:
   plog/trunk/templates/admin/editpost.template
Log:
Change {$xxx|replace:"&":"&"} to {$xxx|escape}. it is better then nothing.

Modified: plog/trunk/templates/admin/editpost.template
===================================================================
--- plog/trunk/templates/admin/editpost.template	2005-02-06 16:14:14 UTC (rev 971)
+++ plog/trunk/templates/admin/editpost.template	2005-02-06 16:44:33 UTC (rev 972)
@@ -40,7 +40,7 @@
 		 <span class="required">*</span>
 		 <div class="formHelp">{$locale->tr("text_help")}</div>
 	     {if !$htmlarea}<script type="text/javascript">var ed1 = new pLogEditor('postText','ed1');</script>{/if}
-	     <textarea {if $htmlarea==1}rows="20"{else}rows="10"{/if} id="postText" name="postText" style="width:100%">{$postText}</textarea>
+	     <textarea {if $htmlarea==1}rows="20"{else}rows="10"{/if} id="postText" name="postText" style="width:100%">{if $htmlarea}{$$postText|escape}{else}{$$postText}{/if}</textarea>
 	     {include file="$admintemplatepath/validate.template" field=postText message=$locale->tr("error_missing_post_text")}   
   	     {if !$htmlarea}
 		   <a href="javascript:resource_list_window(1);">{$locale->tr("add_resource")}</a>
@@ -51,7 +51,7 @@
 	     <label for="postExtendedText">{$locale->tr("extended_text")}</label>
 		 <div class="formHelp">{$locale->tr("extended_text_help")}</div>
 	     {if !$htmlarea}<script type="text/javascript">var ed2 = new pLogEditor('postExtendedText','ed2');</script>{/if}
-	     <textarea {if $htmlarea}rows="25"{else}rows="15"{/if} id="postExtendedText" name="postExtendedText" style="width:100%">{if $htmlarea}{$postExtendedText|replace:"&":"&amp;"}{else}{$postExtendedText}{/if}</textarea>
+	     <textarea {if $htmlarea}rows="25"{else}rows="15"{/if} id="postExtendedText" name="postExtendedText" style="width:100%">{if $htmlarea}{$postExtendedText|escape}{else}{$postExtendedText}{/if}</textarea>
 	     {if !$htmlarea}
 		 <a href="javascript:resource_list_window(2);">{$locale->tr("add_resource")}</a>
 	     {/if}




More information about the pLog-svn mailing list