Changeset 132

Show
Ignore:
Timestamp:
2008-02-17 09:28:20 (11 months ago)
Author:
hannes
Message:

escaping ampersands one time less when saving an edited post (ticket #70)

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • trunk/classes/pages/Edit.php

    r19 r132  
    6363                // commit to database 
    6464                $q = $C->prepare('UPDATE ' . $SETTINGS['dbtableprefix'] . 'posts SET post=:post, edited=:edited, editedby=:by WHERE postid=:id'); 
    65                 $q->bindParam(':post', $F->htmlentities($post), PDO::PARAM_STR); 
     65                $q->bindParam(':post', $F->htmlentities($post, TRUE), PDO::PARAM_STR); 
    6666                $_now = new DateTime('now', new DateTimeZone('UTC')); 
    6767                $q->bindParam(':edited', $_now->format('Y-m-d H:i:s'), PDO::PARAM_STR);