projects / web / www.mackinacislandpackage.com.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 75de9c4)
Update to fix apostrophes
authorSteve Sutton <steve@gaslightmedia.com>
Tue, 14 Aug 2018 12:20:32 +0000 (08:20 -0400)
committerSteve Sutton <steve@gaslightmedia.com>
Tue, 14 Aug 2018 12:20:32 +0000 (08:20 -0400)
Escape the apostrophes.

admin/packages/orderForm.php patch | blob | history
classes/class_order_form.inc patch | blob | history

diff --git a/admin/packages/orderForm.php b/admin/packages/orderForm.php
index 3b593a7..36172e6 100644 (file)
--- a/admin/packages/orderForm.php
+++ b/admin/packages/orderForm.php
@@ -241,6 +241,9 @@ class orderForm extends form_creator
      */
     function process_form_data()
     {
+        foreach ( $_POST as $key => $value ) {
+            $_POST[$key] = addslashes( stripslashes( $value ) );
+        }
         $form_data = $_POST;
         // unset unwanted elements from form_data
         unset($form_data['PHPSESSID']) ;
diff --git a/classes/class_order_form.inc b/classes/class_order_form.inc
index 50d657e..434e34d 100755 (executable)
--- a/classes/class_order_form.inc
+++ b/classes/class_order_form.inc
@@ -296,6 +296,9 @@ class order_form extends form_creator
      */
     function process_form_data()
     {
+        foreach ( $_POST as $key => $value ) {
+            $_POST[$key] = addslashes( stripslashes( $value ) );
+        }
         $form_data = $_POST;
         // unset unwanted elements from form_data
         unset($form_data['PHPSESSID']) ;