Ignore:
Timestamp:
Feb 24, 2022 10:05:48 PM (2 years ago)
Author:
anonymous
Message:

Include boomerang in hidden input on login form so the user will be redirected if the revisit the login form after session is garbage collected. Add escape values used in html attributes.

File:
1 edited

Legend:

Unmodified
Added
Removed

  • trunk/lib/PayPal.inc.php

    r502 r763  
    44 * For details visit the project site: <http://trac.strangecode.com/codebase/>
    55 * Copyright 2001-2012 Strangecode, LLC
    6  * 
     6 *
    77 * This file is part of The Strangecode Codebase.
    88 *
     
    1111 * Free Software Foundation, either version 3 of the License, or (at your option)
    1212 * any later version.
    13  * 
     13 *
    1414 * The Strangecode Codebase is distributed in the hope that it will be useful, but
    1515 * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
    1616 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more
    1717 * details.
    18  * 
     18 *
    1919 * You should have received a copy of the GNU General Public License along with
    2020 * The Strangecode Codebase. If not, see <http://www.gnu.org/licenses/>.
     
    212212    {
    213213        ?>
    214         <form action="<?php echo $this->_buttons[$name]['options']['button_url']; ?>" method="post">
     214        <form action="<?php echo oTxt($this->_buttons[$name]['options']['button_url']); ?>" method="post">
    215215        <?php
    216216        if (is_array($this->_buttons[$name]['options']) && !empty($this->_buttons[$name]['options'])) {
     
    218218                if (!in_array($key, array('button_url', 'link_url', 'submit_img', 'submit_text'))) {
    219219                    ?>
    220                     <input type="hidden" name="<?php echo $key; ?>" value="<?php echo $val; ?>" />
     220                    <input type="hidden" name="<?php echo oTxt($key); ?>" value="<?php echo oTxt($val); ?>" />
    221221                    <?php
    222222                }
     
    224224        }
    225225        ?>
    226         <input type="image" src="<?php echo $this->_buttons[$name]['options']['submit_img']; ?>" border="0" name="submit" alt="<?php echo $this->_buttons[$name]['options']['submit_text']; ?>" />
     226        <input type="image" src="<?php echo oTxt($this->_buttons[$name]['options']['submit_img']); ?>" border="0" name="submit" alt="<?php echo oTxt($this->_buttons[$name]['options']['submit_text']); ?>" />
    227227        </form>
    228228        <?php
     
    257257    {
    258258        $app =& App::getInstance();
    259    
     259
    260260        if (array_key_exists($param, $this->_params)) {
    261261            return $this->_params[$param];
Note: See TracChangeset for help on using the changeset viewer.