[Vtigercrm-commits] [vtiger-commits] r10016 - in /vtigercrm/branches/5.0.3/modules: Settings/SaveRole.php Users/SaveProfile.php
vtigercrm-commits at vtiger.fosslabs.com
vtigercrm-commits at vtiger.fosslabs.com
Wed Jan 3 09:15:39 EST 2007
Author: richie
Date: Wed Jan 3 07:15:33 2007
New Revision: 10016
Log:
allowed quotes during role and profile creation
Modified:
vtigercrm/branches/5.0.3/modules/Settings/SaveRole.php
vtigercrm/branches/5.0.3/modules/Users/SaveProfile.php
Modified: vtigercrm/branches/5.0.3/modules/Settings/SaveRole.php
==============================================================================
--- vtigercrm/branches/5.0.3/modules/Settings/SaveRole.php (original)
+++ vtigercrm/branches/5.0.3/modules/Settings/SaveRole.php Wed Jan 3 07:15:33 2007
@@ -11,7 +11,7 @@
require_once('include/database/PearDatabase.php');
global $adb;
-$rolename = $_REQUEST['roleName'];
+$rolename = addslashes($_REQUEST['roleName']);
$mode = $_REQUEST['mode'];
if(isset($_REQUEST['dup_check']) && $_REQUEST['dup_check']!='')
{
Modified: vtigercrm/branches/5.0.3/modules/Users/SaveProfile.php
==============================================================================
--- vtigercrm/branches/5.0.3/modules/Users/SaveProfile.php (original)
+++ vtigercrm/branches/5.0.3/modules/Users/SaveProfile.php Wed Jan 3 07:15:33 2007
@@ -13,7 +13,7 @@
require_once('include/utils/UserInfoUtil.php');
require_once('include/utils/utils.php');
global $adb;
-$profilename = $_REQUEST['profile_name'];
+$profilename = addslashes($_REQUEST['profile_name']);
$description= $_REQUEST['profile_description'];
$def_module = $_REQUEST['selected_module'];
$def_tab = $_REQUEST['selected_tab'];
More information about the vtigercrm-commits
mailing list