Changeset 851 for trunk/Modules
- Timestamp:
- Jan 17, 2016, 10:07:13 PM (9 years ago)
- Location:
- trunk/Modules
- Files:
-
- 9 edited
Legend:
- Unmodified
- Added
- Removed
-
trunk/Modules/Dictionary/Dictionary.php
r850 r851 170 170 '<input type="hidden" name="id" value="'.$_GET['id'].'"/>'. 171 171 '<table><tr><td>'. 172 'Původní anglické slovo:</td><td><input type="text" name="Original" value="'. $DbRow2['Text'].'" /></td></tr>'.173 '<tr><td>Přeložené:</td><td><input type="text" name="Translated" value="'.$DbRow['Text'].'" /></td></tr>'.172 'Původní anglické slovo:</td><td><input type="text" name="Original" value="'.htmlspecialchars($DbRow2['Text']).'" /></td></tr>'. 173 '<tr><td>Přeložené:</td><td><input type="text" name="Translated" value="'.htmlspecialchars($DbRow['Text']).'" /></td></tr>'. 174 174 '<tr><td>'.T('Language').':</td><td>'.WriteLanguages($DbRow['Language']).'</td></tr>'. 175 '<tr><td>'.T('Description').':</td><td><input type="text" name="Description" value="'. $DbRow['Description'].'" /></td></tr>'.175 '<tr><td>'.T('Description').':</td><td><input type="text" name="Description" value="'.htmlspecialchars($DbRow['Description']).'" /></td></tr>'. 176 176 '<tr><td colspan="2"><input type="submit" value="'.T('Save').'" /></td></tr>'. 177 177 '</td></tr></table>'. … … 271 271 272 272 if(is_numeric($_SESSION['language'])) $LanguageName = $LanguageList[$_SESSION['language']]['Name']; 273 else $LanguageName = 'Překlad';273 else $LanguageName = T('Translation'); 274 274 $TableColumns = array( 275 275 array('Name' => 'Original', 'Title' => T('English')), … … 288 288 { 289 289 $Output .= '<tr>'. 290 '<td>'. $Line['Original'].'</td>'.291 '<td><strong>'. $Line['Translated'].'</strong></td>';290 '<td>'.htmlspecialchars($Line['Original']).'</td>'. 291 '<td><strong>'.htmlspecialchars($Line['Translated']).'</strong></td>'; 292 292 if(!is_numeric($_SESSION['language'])) $Output .= '<td>'.T($Line['LangName']).'</td>'; 293 $Output .= '<td>'. $Line['Description'].'</td>'.293 $Output .= '<td>'.htmlspecialchars($Line['Description']).'</td>'. 294 294 '<td><a href="'.$this->System->Link('/user/?user='.$Line['UserId']).'">'. 295 295 $Line['UserName'].'</a></td>'; -
trunk/Modules/Export/Page.php
r848 r851 70 70 $Output .= '<tr><td>'.HumanDate($Export['TimeCreate']).'</td>'. 71 71 '<td><a href="'.$this->System->Link('/user/?user='.$Export['User']).'">'.$Export['UserName'].'</a></td>'. 72 '<td>'. $Export['Title'].'</td>'.72 '<td>'.htmlspecialchars($Export['Title']).'</td>'. 73 73 '<td>'.$Export['OutputType'].'</td>'. 74 74 '<td><a href="'.$this->System->Link('/client-version/?action=item&id='.$Export['ClientVersionId']).'">'.$Export['ClientVersion'].'</a></td>'. … … 304 304 $Output .= '<input type="hidden" name="Operation" value="Save"/>'. 305 305 '<tr><td colspan="2">'; 306 if($Editable) $Output .= ' <input type="submit" value=" Uložit" '.$DisabledInput[$Editable].'/>';306 if($Editable) $Output .= ' <input type="submit" value="'.T('Save').'" '.$DisabledInput[$Editable].'/>'; 307 307 $Output .= ' <a href="?Action=Clone&ExportId='.$Export['Id'].'" onclick="return confirmAction(\''.T('Realy clone item?').'\');">'.T('Clone').'</a> '; 308 308 if($this->System->User->Licence(LICENCE_ADMIN)) … … 310 310 $Output .= '</td></tr>'; 311 311 } 312 $Output .= '<tr><td>'.T('Identification').':</td><td><input type="text" style="width: 400px" name="Title" value="'. $Export['Title'].'"'.$DisabledInput[$Editable].'/></td></tr>'.313 '<tr><td> Popis:</td><td><textarea name="Description" cols="54" rows="10"'.$DisabledTextArea[$Editable].'>'.$Export['Description'].'</textarea></td></tr>'.312 $Output .= '<tr><td>'.T('Identification').':</td><td><input type="text" style="width: 400px" name="Title" value="'.htmlspecialchars($Export['Title']).'"'.$DisabledInput[$Editable].'/></td></tr>'. 313 '<tr><td>'.T('Description').':</td><td><textarea name="Description" cols="54" rows="10"'.$DisabledTextArea[$Editable].'>'.htmlspecialchars($Export['Description']).'</textarea></td></tr>'. 314 314 '<tr><td>'.T('With diacritics').'</td><td><input type="checkbox" name="WithDiacritic" '.$WithDiacritic.''.$DisabledInput[$Editable].'/></td></tr>'. 315 315 '</table></form>'; … … 752 752 $DbResult = $this->System->Database->query('SELECT * FROM `User` WHERE `ID`='.$Export['User']); 753 753 $UserLine = $DbResult->fetch_assoc(); 754 $Output .= 'Export <strong><a href="?Action=View&Tab=6&ExportId='.$Export['Id'].'">'.$_GET['ExportId'].'</a></strong> překladatele <strong>'.$UserLine['Name'].'</strong> s označením <strong>'.$Export['Title'].'</strong>'; 755 $Output .= ShowTabs(array(T('General'), T('Translators'), T('Translations'), T('Languages'), T('Format'), T('Version'), T('Statistic'), T('Output'))); 754 $Output .= sprintf(T('Export %s of translator %s'), 755 '<strong><a href="?Action=View&Tab=6&ExportId='.$Export['Id'].'">'.htmlspecialchars($Export['Title']).'</a></strong>', 756 '<strong>'.$UserLine['Name'].'</strong>'); 757 $Output .= ShowTabs(array(T('General'), T('Translators'), 758 T('Translations'), T('Languages'), T('Format'), T('Version'), 759 T('Statistic'), T('Output'))); 756 760 $Output .= '<div id="content">'; 757 761 if($_SESSION['Tab'] == TAB_GENERAL) $Output .= $this->ExportViewGeneral(); -
trunk/Modules/Forum/Forum.php
r850 r851 26 26 if(array_key_exists('Search', $this->System->ModuleManager->Modules)) 27 27 $this->System->ModuleManager->Modules['Search']->RegisterSearch('forumthread', 28 T('Name of thread forum'), array('UserName', 'Text'), '`ForumThread`', $this->System->Link('/forum/?search=')); 28 T('Name of thread forum'), array('UserName', 'Text'), '`ForumThread`', 29 $this->System->Link('/forum/?search=')); 29 30 30 31 $this->System->RegisterMenuItem(array( … … 56 57 '<td><a href="'.$this->System->Link('/forum/?Thread='.$DbRow['Thread']).'">'.HumanDate($DbRow['Date']).'</a></td>'. 57 58 '<td><a href="'.$this->System->Link('/user/?user='.$DbRow['UserId']).'">'.$DbRow['UserName'].'</a></td>'. 58 '<td>'. $Parser->qparse($DbRow['Text']).'</td>'.59 '<td>'.htmlspecialchars($Parser->qparse($DbRow['Text'])).'</td>'. 59 60 '</tr>'; 60 61 } … … 72 73 if(array_key_exists('a', $_POST)) $Action = $_POST['a']; 73 74 else if(array_key_exists('a', $_GET)) $Action = $_GET['a']; 74 75 else $Action = ''; 75 76 if (array_key_exists('Edit', $_GET)) { 76 77 if (array_key_exists('text', $_POST)) … … 117 118 T('User').': '; 118 119 if($this->System->User->Licence(LICENCE_USER)) $Output .= '<b>'.$this->System->User->Name.'</b><br />'; 119 else $Output .= '<input type="text" name="user" /><br />';120 else $Output .= '<input type="text" name="user" /><br />'; 120 121 $Output .= T('Message text').': ('.T('You can use').' <a href="http://www.bbcode.org/reference.php">'.T('BB code').'</a>)<br/>'. 121 '<textarea onkeydown="ResizeTextArea(this)" rows="8" name="text" cols="80">'. $DbRow['Text'].'</textarea> <br/>'.122 '<textarea onkeydown="ResizeTextArea(this)" rows="8" name="text" cols="80">'.htmlspecialchars($DbRow['Text']).'</textarea> <br/>'. 122 123 '<input type="hidden" name="a" value="add2"/>'. 123 124 '<input type="submit" value="'.T('Send').'" /><br /></fieldset>'. … … 149 150 '`ForumThread`.`Text` as `ThreadName`,`ForumText`.`Thread` FROM `ForumText` '.$join.' WHERE '.$where.' ORDER BY `ForumText`.`Date` DESC '.$PageList['SQLLimit']); 150 151 while($Line = $DbResult->fetch_assoc()) 151 $Output .= '<div><a href="'.$this->System->Link('/forum/?Thread='.$Line['Thread']).'">'.$Line['ThreadName'].'</a><br /><strong>'.$Line['UserName'].'</strong> ('.HumanDate($Line['Date']).'): '.$parser->qparse($Line['Text']).'</div> '; 152 $Output .= '<div><a href="'.$this->System->Link('/forum/?Thread='.$Line['Thread']).'">'. 153 htmlspecialchars($Line['ThreadName']).'</a><br /><strong>'.$Line['UserName']. 154 '</strong> ('.HumanDate($Line['Date']).'): '.htmlspecialchars($parser->qparse($Line['Text'])).'</div> '; 152 155 $Output .= '</div>'.$PageList['Output']; 153 156 return($Output); … … 166 169 $DbResult = $this->System->Database->query('SELECT * FROM `ForumThread` WHERE 1 ORDER BY `ID` DESC '.$PageList['SQLLimit']); 167 170 while($Line = $DbResult->fetch_assoc()) 168 $Output .= '<div><span style="float:right;"><strong>'.$Line['UserName'].'</strong> - ('.HumanDate($Line['Date']).')</span> <a href="?Thread='.$Line['ID'].'">'.str_replace("\n", '',$Line['Text']).'</a> </div>'; 171 $Output .= '<div><span style="float:right;"><strong>'.$Line['UserName']. 172 '</strong> - ('.HumanDate($Line['Date']).')</span> <a href="?Thread='.$Line['ID'].'">'. 173 str_replace("\n", '', htmlspecialchars($Line['Text'])).'</a></div>'; 169 174 $Output .= '</div>'.$PageList['Output']; 170 175 return($Output); … … 191 196 { 192 197 $Thread = $DbResult->fetch_assoc(); 193 $Output .= '<h3>'. $Thread['Text'].'</h3>';198 $Output .= '<h3>'.htmlspecialchars($Thread['Text']).'</h3>'; 194 199 195 200 $DbResult = $this->System->Database->query('SELECT COUNT(*) FROM `ForumText` WHERE `Thread` = '.($_GET['Thread']*1).' '.$SearchQuery); … … 206 211 else $edit = ''; 207 212 $Output .= '<div><span style="float:right;">'.$edit.' ('.HumanDate($Line['Date']). 208 ')</span><strong>'.$Line['UserName'].'</strong>: '.str_replace("\n", '<br />',$parser->qparse($Line['Text'])).' </div> '; 213 ')</span><strong>'.$Line['UserName'].'</strong>: '.str_replace("\n", '<br />', 214 htmlspecialchars($parser->qparse($Line['Text']))).' </div> '; 209 215 } 210 216 $Output .= '</div>'.$PageList['Output']; … … 313 319 $Items[] = array 314 320 ( 315 'Title' => $DbRow['ThreadText'].' - '.$DbRow['UserName'].': ',316 'Link' => 317 'Description' => $parser->qparse($DbRow['Text']),321 'Title' => htmlspecialchars($DbRow['ThreadText']).' - '.$DbRow['UserName'].': ', 322 'Link' => 'http://'.$this->System->Config['Web']['Host'].$this->System->Link('/forum/?Thread='.$DbRow['Thread']), 323 'Description' => htmlspecialchars($parser->qparse($DbRow['Text'])), 318 324 'Time' => $DbRow['UnixDate'], 319 325 ); -
trunk/Modules/ShoutBox/ShoutBox.php
r839 r851 63 63 { 64 64 $SearchQuery = ' AND (`Text` LIKE "%'.$_SESSION['search'].'%")'; 65 $Output .= '<div><a href="?search=">'.sprintf(T('Disable filter "%s"'), $_SESSION['search']).'</a></div>';65 $Output .= '<div><a href="?search=">'.sprintf(T('Disable filter "%s"'), htmlentities($_SESSION['search'])).'</a></div>'; 66 66 } else $SearchQuery = ''; 67 67 -
trunk/Modules/Team/Team.php
r849 r851 47 47 { 48 48 $SearchQuery = ' AND ((`Name` LIKE "%'.$_SESSION['search'].'%") OR (`Description` LIKE "%'.$_SESSION['search'].'%"))'; 49 $Output .= '<div><a href="?search=">'.sprintf(T('Disable filter "%s"'), $_SESSION['search']).'</a></div>';49 $Output .= '<div><a href="?search=">'.sprintf(T('Disable filter "%s"'), htmlspecialchars($_SESSION['search'])).'</a></div>'; 50 50 } else $SearchQuery = ''; 51 51 … … 75 75 { 76 76 $Output .= '<tr>'. 77 '<td><a href="?action=team&id='.$Team['Id'].'">'. $Team['Name'].'</a></td>'.78 '<td><a href="http://'.$Team['URL'].'">'. $Team['URL'].'</a></td>'.77 '<td><a href="?action=team&id='.$Team['Id'].'">'.htmlspecialchars($Team['Name']).'</a></td>'. 78 '<td><a href="http://'.$Team['URL'].'">'.htmlspecialchars($Team['URL']).'</a></td>'. 79 79 '<td><a href="'.$this->System->Link('/user/?user='.$Team['Leader']).'">'.$Team['LeaderName'].'</a></td>'. 80 80 '<td><a href="'.$this->System->Link('/users/?team='.$Team['Id']).'" title="Zobrazit členy týmu">'.$Team['NumberUser'].'</a></td>'. … … 157 157 $Output = '<form action="?action=finish_modify&id='.$_GET['id'].'" method="post">'. 158 158 '<fieldset><legend>Nastavení týmu</legend>'. 159 '<table><tr><td>Jméno:</td><td><input type="text" name="Name" value="'. $Team['Name'].'"/></td></tr>'.160 '<tr><td>Webové stránky:</td><td>http://<input type="text" name="URL" value="'. $Team['URL'].'"/></td></tr>'.161 '<tr><td>Popis:</td><td><input type="text" name="Description" value="'. $Team['Description'].'"/></td></tr>'.162 '<tr><td colspan="2"><input type="submit" value=" Uložit" /></td></tr>'.159 '<table><tr><td>Jméno:</td><td><input type="text" name="Name" value="'.htmlspecialchars($Team['Name']).'"/></td></tr>'. 160 '<tr><td>Webové stránky:</td><td>http://<input type="text" name="URL" value="'.htmlspecialchars($Team['URL']).'"/></td></tr>'. 161 '<tr><td>Popis:</td><td><input type="text" name="Description" value="'.htmlspecialchars($Team['Description']).'"/></td></tr>'. 162 '<tr><td colspan="2"><input type="submit" value="'.T('Save').'" /></td></tr>'. 163 163 '</table></fieldset></form>'; 164 164 } else $Output = ShowMesage('Tým nenalezen.', MESSAGE_CRITICAL); … … 230 230 } else $Leader = array('Name' => '', 'Id' => 0); 231 231 232 $Output .='<h3>'.T('Translation team').' '. $Team['Name'].'</h3><br />'.233 T('Web pages').': <a href="http://'. $Team['URL'].'">'.$Team['URL'].'</a><br/>'.232 $Output .='<h3>'.T('Translation team').' '.htmlspecialchars($Team['Name']).'</h3><br />'. 233 T('Web pages').': <a href="http://'.htmlspecialchars($Team['URL']).'">'.htmlspecialchars($Team['URL']).'</a><br/>'. 234 234 T('Leader').': <a href="'.$this->System->Link('/user/?user='.$Leader['Id']).'">'.$Leader['Name'].'</a><br/>'; 235 235 if($Team['Description'] != '') 236 $Output .= T('Description').': '. $Team['Description'].'<br />';236 $Output .= T('Description').': '.htmlspecialchars($Team['Description']).'<br />'; 237 237 $Output .= '<br />'; 238 238 //$Output .= '<a href="export/?team='.$Team['Id'].'">Exportovat překlad týmu</a> '; … … 241 241 $XP = GetLevelMinMax($Team['AverageXP']); 242 242 $Output .='<fieldset><legend>'.T('Statistics').'</legend>'. 243 T('Team member count').': <a href="'.$this->System->Link('/user list/?team='.$Team['Id']).'" title="Zobrazit členy týmu">'.$Team['NumberUser'].'</a><br />'.243 T('Team member count').': <a href="'.$this->System->Link('/users/?team='.$Team['Id']).'" title="Zobrazit členy týmu">'.$Team['NumberUser'].'</a><br />'. 244 244 T('Team number of translated texts').': <strong>'.$Team['NumberTranslate'].'</strong><br />'. 245 245 T('Average level of team members').': <strong>'.$XP['Level'].'</strong> '.T('experience').': '.ProgressBar(150, round($XP['XP'] / $XP['MaxXP'] * 100, 2), $XP['XP'].' / '.$XP['MaxXP']).'<br />'. -
trunk/Modules/User/Options.php
r848 r851 30 30 '<tr><td>'.T('Preferred client version').': </td><td>'.ClientVersionSelection($this->System->User->PreferredVersion).'</td></tr>'. 31 31 '<tr><td>'.T('Public profile text').':</td><td>'. 32 '<textarea name="info" cols="60" rows="10">'. $this->System->User->Info.'</textarea></td></tr>';32 '<textarea name="info" cols="60" rows="10">'.htmlspecialchars($this->System->User->Info).'</textarea></td></tr>'; 33 33 34 34 $Output .= '<tr><td>'; … … 64 64 $Output .= '<option value="'.$LineTeam['Id'].'"'; 65 65 if ($LineTeam['Id'] == $this->System->User->Team) $Output .= ' selected="selected"'; 66 $Output .= '>'. $LineTeam['Name'].'</option>';66 $Output .= '>'.htmlspecialchars($LineTeam['Name']).'</option>'; 67 67 } 68 68 $Output .= '</select> <input type="submit" value="'.T('Enter').'" /> -
trunk/Modules/User/Profile.php
r850 r851 64 64 if($this->System->User->Id != null) $Action .= ' <a href="'.$this->System->Link('/export/?Action=Clone&ExportId='.$Export['Id']).'" onclick="return confirmAction(\''.T('Really clone item?').'\');">'.T('Clone').'</a>'; 65 65 $Output .= '<tr><td>'.HumanDate($Export['TimeCreate']).'</td>'. 66 '<td>'. $Export['Title'].'</td>'.66 '<td>'.htmlspecialchars($Export['Title']).'</td>'. 67 67 '<td>'.$Export['OutputType'].'</td>'. 68 68 '<td><a href="'.$this->System->Link('/client-version/?action=item&id='.$Export['ClientVersionId']).'">'.$Export['ClientVersion'].'</a></td>'. … … 109 109 { 110 110 $Output .= '<tr><td>'.HumanDate($DbRow['ModifyTime']).'</td>'. 111 112 113 111 '<td><a href="'.$this->System->Link('/form.php?group='.$DbRow['Group'].'&ID='.$DbRow['ID']).'">'.$DbRow['ID'].'</a></td>'. 112 '<td><a href="'.$this->System->Link('/form.php?group='.$DbRow['Group'].'&ID='.$DbRow['Take']).'">'.$DbRow['Take'].'</a></td>'. 113 '<td><a href="'.$this->System->Link('/TranslationList.php?group='.$DbRow['Group'].'&action=filter').'">'.T($DbRow['GroupName']).'</a></td></tr>'; 114 114 } 115 115 $Output .= '</table>'; … … 125 125 126 126 $Output .= '<div class="shoutbox">'; 127 $DbResult = $this->System->Database->query('SELECT `ForumText`.`Text`, `ForumText`.`Date`, `ForumText`.`UserName`,`ForumThread`.`Text` as `ThreadName`,`ForumText`.`Thread` FROM `ForumText` JOIN `ForumThread` ON `ForumThread`.`ID` = `ForumText`.`Thread` WHERE `ForumText`.`User` = '.($_GET['user'] * 1).' ORDER BY `ForumText`.`Date` DESC LIMIT '.$Count); 127 $DbResult = $this->System->Database->query('SELECT `ForumText`.`Text`, '. 128 '`ForumText`.`Date`, `ForumText`.`UserName`,`ForumThread`.`Text` AS `ThreadName`, '. 129 '`ForumText`.`Thread` FROM `ForumText` '. 130 'JOIN `ForumThread` ON `ForumThread`.`ID` = `ForumText`.`Thread` '. 131 'WHERE `ForumText`.`User` = '.($_GET['user'] * 1).' ORDER BY `ForumText`.`Date` DESC LIMIT '.$Count); 128 132 while($Line = $DbResult->fetch_assoc()) 129 $Output .= '<div><a href="'.$this->System->Link('/forum/?Thread='.$Line['Thread']).'">'.$Line['ThreadName'].'</a><br /><strong>'.$Line['UserName'].'</strong> ('.HumanDate($Line['Date']).'): '.$parser->qparse($Line['Text']).'</div> '; 133 $Output .= '<div><a href="'.$this->System->Link('/forum/?Thread='.$Line['Thread']).'">'.htmlspecialchars($Line['ThreadName']).'</a><br />'. 134 '<strong>'.$Line['UserName'].'</strong> ('.HumanDate($Line['Date']).'): '.htmlspecialchars($parser->qparse($Line['Text'])).'</div> '; 130 135 $Output .= '</div>'; 131 136 return($Output); … … 159 164 T('Level:').' <strong>'.$XP['Level'].'</strong> '.T('experience:').' '.ProgressBar(150, round($XP['XP'] / $XP['MaxXP'] * 100, 2), $XP['XP'].' / '.$XP['MaxXP']).'<br/>'; 160 165 if($UserLine['TeamName'] != '') 161 $Output .= T('Member of team:').' <a href="'.$this->System->Link('/team/?action=team&id='.$UserLine['Team']).'"><strong>'. $UserLine['TeamName'].'</strong></a><br />';166 $Output .= T('Member of team:').' <a href="'.$this->System->Link('/team/?action=team&id='.$UserLine['Team']).'"><strong>'.htmlspecialchars($UserLine['TeamName']).'</strong></a><br />'; 162 167 163 168 // User tags … … 175 180 } 176 181 177 $Output .= '<br /><fieldset><legend>'.T('Profile text:').'</legend>'. str_replace("\n", '<br/>', $UserLine['Info']).'</fieldset><br/>';182 $Output .= '<br /><fieldset><legend>'.T('Profile text:').'</legend>'.htmlspecialchars(str_replace("\n", '<br/>', $UserLine['Info'])).'</fieldset><br/>'; 178 183 179 184 $Output .= '<table class="Home"><tr>'. … … 183 188 $Output .= '<br />'.$this->ShowLastForum().'<br />'; 184 189 if($this->System->User->Licence(LICENCE_MODERATOR)) 185 {190 { 186 191 $Output .= '<fieldset><legend>Moderování</legend>'; 187 192 188 193 $Output .= '<form action="?user='.($_GET['user'] * 1).'" method="post">Přidání tagu uživateli:<br />'; 189 $Query = 'SELECT * FROM UserTagType';194 $Query = 'SELECT * FROM `UserTagType`'; 190 195 $DbResult = $this->Database->query($Query); 191 196 while ($UserTag = $DbResult->fetch_array()) { -
trunk/Modules/User/Registration.php
r844 r851 19 19 <fieldset><legend>'.T('New user registration').'</legend> 20 20 <table> 21 <tr><td colspan="2">'.T('Please read carefully <a href="'.$this->System->Link('/info/').'">translation guidelines</a> and follow them. Translate with diacritics!').'<br/><br/></td></tr> 21 <tr><td colspan="2">'.sprintf(T('Please read carefully %s and follow them. Translate with diacritics!'), 22 '<a href="'.$this->System->Link('/info/').'">'.T('translation guidelines').'</a>'). 23 '<br/><br/></td></tr> 22 24 <tr> 23 25 <th class="Left">'.T('Are you human?').'</th>'; … … 27 29 </tr> 28 30 <tr> 29 <th class="Left">'.T('Name :').'</th>31 <th class="Left">'.T('Name').':</th> 30 32 <td><input type="text" name="user" value="'.$UserName.'"/></td> 31 33 </tr> 32 34 <tr> 33 <th class="Left">'.T('Password :').'</th>35 <th class="Left">'.T('Password').':</th> 34 36 <td><input type="password" name="pass" /></td> 35 37 </tr> 36 38 <tr> 37 <th class="Left">'.T('Password confirmation :').'</th>39 <th class="Left">'.T('Password confirmation').':</th> 38 40 <td><input type="password" name="pass2" /></td> 39 41 </tr> 40 42 <tr> 41 <th class="Left">'.T('E-mail :').'</th>43 <th class="Left">'.T('E-mail').':</th> 42 44 <td><input type="text" name="Email" value="'.$Email.'"/></td> 43 45 </tr> 44 46 <tr> 45 <th class="Left">'.T('I will translate normally to :').'</th>47 <th class="Left">'.T('I will translate normally to').':</th> 46 48 <td>'.WriteLanguages($Language).'</td> 47 49 </tr> 48 50 <tr> 49 <th class="Left">'.T('I belong to team :').'</th>';51 <th class="Left">'.T('I belong to team').':</th>'; 50 52 if($Team == '') $Selected = ' selected="selected"'; 51 53 else $Selected = ''; … … 56 58 if($Team == $Line['Id']) $Selected = ' selected="selected"'; 57 59 else $Selected = ''; 58 $Output .= '<option value="0'.$Line['Id'].'"'.$Selected.'>'. $Line['Name'].'</option>';60 $Output .= '<option value="0'.$Line['Id'].'"'.$Selected.'>'.htmlspecialchars($Line['Name']).'</option>'; 59 61 } 60 62 $Output .= '</select>'; 61 63 $Output .= '</td></tr>'. 62 '<tr><th class="Left">'.T('Preferred client version :').'</th><td>'.ClientVersionSelection('').'</td></tr>';64 '<tr><th class="Left">'.T('Preferred client version').':</th><td>'.ClientVersionSelection('').'</td></tr>'; 63 65 64 66 $Query = 'SELECT * FROM UserTagType'; 65 67 $DbResult = $this->Database->query($Query); 66 68 $Output .= '<tr><th class="Left">'. 67 T('Select rules which you will apply during translation :').'</th><td>';69 T('Select rules which you will apply during translation').':</th><td>'; 68 70 while ($UserTag = $DbResult->fetch_array()) 69 71 { -
trunk/Modules/User/UserList.php
r843 r851 20 20 { 21 21 $TeamId = $_GET['team'] * 1; 22 $DbResult = $this->Database->select('Team', 'Name', ' Id='.$TeamId);22 $DbResult = $this->Database->select('Team', 'Name', '`Id`='.$TeamId); 23 23 if($DbResult->num_rows > 0) 24 24 { 25 25 $Team = $DbResult->fetch_assoc(); 26 $Output .= '<h3>'.sprintf(T('Users in team %s'), $Team['Name']).'</h3>';26 $Output .= '<h3>'.sprintf(T('Users in team %s'), htmlspecialchars($Team['Name'])).'</h3>'; 27 27 $TeamFilter = ' AND (`Team`='.$_GET['team'].')'; 28 28 } else {
Note:
See TracChangeset
for help on using the changeset viewer.