- Timestamp:
- 07/06/08 21:16:50 (5 years ago)
- Files:
-
- 1 modified
Legend:
- Unmodified
- Added
- Removed
-
downloadDatabase/files/lib/acp/form/DownloadDBKatAddForm.class.php
r524 r589 56 56 parent::readFormParameters(); 57 57 58 if (isset($_POST['topID'])) $this->topID = intval($_ REQUEST['topID']);59 if (isset($_POST['name'])) $this->name = escapeString(StringUtil::trim($_REQUEST['name']));60 if (isset($_POST['description'])) $this->description = escapeString(StringUtil::trim($_POST['description']));58 if (isset($_POST['topID'])) $this->topID = intval($_POST['topID']); 59 if (isset($_POST['name'])) $this->name = StringUtil::trim($_POST['name']); 60 if (isset($_POST['description'])) $this->description = StringUtil::trim($_POST['description']); 61 61 if (isset($_POST['groupIDs'])) $this->groupIDs = ArrayUtil::toIntegerArray($_POST['groupIDs']); 62 62 if (isset($_POST['uploadGroups'])) $this->uploadGroups = ArrayUtil::toIntegerArray($_POST['uploadGroups']); … … 118 118 'enableHtml' => intval($this->enableHtml), 119 119 'enableSmilies' => intval($this->enableSmilies), 120 'languageID' => intval($this->languageID)120 'languageID' => $this->languageID 121 121 ); 122 $category = DownloadDBKatEditor::createCategory($this->topID, $this->name, $this->description, $this->groupIDs, $this->uploadGroups, intval($this->sortOrder), $moreData);122 $category = DownloadDBKatEditor::createCategory($this->topID, escapeString($this->name), escapeString($this->description), $this->groupIDs, $this->uploadGroups, intval($this->sortOrder), $moreData); 123 123 } 124 124 $this->saved();
