]> git.mxchange.org Git - friendica.git/commitdiff
projects / friendica.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: efbd203)
use htmlspecialchars in xmlify and htmlspecialchars_decode in unxmlify
authorFabrixxm <fabrix.xm@gmail.com>
Thu, 16 Jan 2014 14:08:51 +0000 (09:08 -0500)
committerFabrixxm <fabrix.xm@gmail.com>
Thu, 16 Jan 2014 14:08:51 +0000 (09:08 -0500)
include/text.php patch | blob | history

diff --git a/include/text.php b/include/text.php
index a47e352bae7fecdcee91fbcb58622ead3a2b15bf..7b4d7e191481de1e99f55c2d3347eaea10506747 100644 (file)
--- a/include/text.php
+++ b/include/text.php
@@ -218,14 +218,16 @@ function xmlify($str) {
                                break;
                }       
        }*/
-
+       /*
        $buffer = mb_ereg_replace("&", "&amp;", $str);
        $buffer = mb_ereg_replace("'", "&apos;", $buffer);
-       $buffer = mb_ereg_replace("\"", "&quot;", $buffer);
+       $buffer = mb_ereg_replace('"', "&quot;", $buffer);
        $buffer = mb_ereg_replace("<", "&lt;", $buffer);
        $buffer = mb_ereg_replace(">", "&gt;", $buffer);
-
+       */
+       $buffer = htmlspecialchars($str);
        $buffer = trim($buffer);
+       
        return($buffer);
 }}
 
@@ -238,11 +240,13 @@ if(! function_exists('unxmlify')) {
 function unxmlify($s) {
 //     $ret = str_replace('&amp;','&', $s);
 //     $ret = str_replace(array('&lt;','&gt;','&quot;','&apos;'),array('<','>','"',"'"),$ret);
-       $ret = mb_ereg_replace('&amp;', '&', $s);
+       /*$ret = mb_ereg_replace('&amp;', '&', $s);
        $ret = mb_ereg_replace('&apos;', "'", $ret);
        $ret = mb_ereg_replace('&quot;', '"', $ret);
        $ret = mb_ereg_replace('&lt;', "<", $ret);
        $ret = mb_ereg_replace('&gt;', ">", $ret);
+       */
+       $ret = htmlspecialchars_decode($s);
        return $ret;    
 }}
 
Unnamed repository; edit this file 'description' to name the repository.