From 5aa9f5230c240a952cdc6eb685b65df36fe7abfd Mon Sep 17 00:00:00 2001
From: Jason Oster <parasytic@users.sourceforge.net>
Date: Tue, 13 Apr 2010 15:45:47 +0000
Subject: Properly sanitize dollar signs in event text (regression from new
 sanitize code in 2.4)

---
 functions/init/sanitize.php | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'functions/init/sanitize.php')

diff --git a/functions/init/sanitize.php b/functions/init/sanitize.php
index 39b8246..e3e6525 100644
--- a/functions/init/sanitize.php
+++ b/functions/init/sanitize.php
@@ -53,11 +53,13 @@ function chopToWordCount($string, $count) {
 function sanitizeForWeb($string) {
     $string = preg_replace('/<br\s*\/?>/', "\n", $string);
 
+    $string = str_replace('&#36;', '$', $string);
     $string = str_replace('&', '&amp;', $string);
     $string = str_replace('<', '&lt;', $string);
     $string = str_replace('>', '&gt;', $string);
     $string = str_replace('\'', '&#39;', $string);
     $string = str_replace('"', '&#34;', $string);
+    $string = str_replace('$', '&#36;', $string);
 
     $string = str_replace("\n", '<br />', $string);
     $string = str_replace("\t", ' &nbsp; &nbsp; ', $string);
-- 
cgit v1.2.3