[ingo] quotes in filter value

Todd Merritt tmerritt at email.arizona.edu
Tue Jun 24 13:08:27 PDT 2003


The following trivial patch fixes the case where the value of a
condition is not displayed on the rule form if it contains a ".

Thanks,

Todd

Index: ingo/rule.php
diff -u ingo/rule.php:1.1 ingo/rule.php:1.1.1.1.2.3
--- ingo/rule.php:1.1   Tue May 13 11:54:33 2003
+++ ingo/rule.php       Mon Jun 23 14:25:36 2003
@@ -64,6 +64,8 @@
 
     $text = '';
 
+    // escape value in case it has "'s
+    $value = htmlspecialchars($value);






More information about the ingo mailing list