diff options
| author | Jason Oster <parasytic@users.sourceforge.net> | 2010-04-13 15:45:47 +0000 |
|---|---|---|
| committer | Jason Oster <parasytic@users.sourceforge.net> | 2010-04-13 15:45:47 +0000 |
| commit | 5aa9f5230c240a952cdc6eb685b65df36fe7abfd (patch) | |
| tree | 164ae1cbf9c9f765ac357f1f5aaae5f720ed6af3 /functions/init | |
| parent | 873688e87be6762e794cfc6e11c2c9d407d8929a (diff) | |
| download | phpicalendar-5aa9f5230c240a952cdc6eb685b65df36fe7abfd.tar.gz phpicalendar-5aa9f5230c240a952cdc6eb685b65df36fe7abfd.tar.bz2 phpicalendar-5aa9f5230c240a952cdc6eb685b65df36fe7abfd.zip | |
Properly sanitize dollar signs in event text (regression from new sanitize code in 2.4)
Diffstat (limited to 'functions/init')
| -rw-r--r-- | functions/init/sanitize.php | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/functions/init/sanitize.php b/functions/init/sanitize.php index 39b8246..e3e6525 100644 --- a/functions/init/sanitize.php +++ b/functions/init/sanitize.php @@ -53,11 +53,13 @@ function chopToWordCount($string, $count) { function sanitizeForWeb($string) { $string = preg_replace('/<br\s*\/?>/', "\n", $string); + $string = str_replace('$', '$', $string); $string = str_replace('&', '&', $string); $string = str_replace('<', '<', $string); $string = str_replace('>', '>', $string); $string = str_replace('\'', ''', $string); $string = str_replace('"', '"', $string); + $string = str_replace('$', '$', $string); $string = str_replace("\n", '<br />', $string); $string = str_replace("\t", ' ', $string); |