From 172cce9738e7e31359b46e7730628633c1647b42 Mon Sep 17 00:00:00 2001
From: Steve Sutton <steve@gaslightmedia.com>
Date: Tue, 14 Aug 2018 08:20:32 -0400
Subject: [PATCH] Update to fix apostrophes

Escape the apostrophes.
---
 admin/packages/orderForm.php | 3 +++
 classes/class_order_form.inc | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/admin/packages/orderForm.php b/admin/packages/orderForm.php
index 3b593a7..36172e6 100644
--- a/admin/packages/orderForm.php
+++ b/admin/packages/orderForm.php
@@ -241,6 +241,9 @@ class orderForm extends form_creator
      */
     function process_form_data()
     {
+        foreach ( $_POST as $key => $value ) {
+            $_POST[$key] = addslashes( stripslashes( $value ) );
+        }
         $form_data = $_POST;
         // unset unwanted elements from form_data
         unset($form_data['PHPSESSID']) ;
diff --git a/classes/class_order_form.inc b/classes/class_order_form.inc
index 50d657e..434e34d 100755
--- a/classes/class_order_form.inc
+++ b/classes/class_order_form.inc
@@ -296,6 +296,9 @@ class order_form extends form_creator
      */
     function process_form_data()
     {
+        foreach ( $_POST as $key => $value ) {
+            $_POST[$key] = addslashes( stripslashes( $value ) );
+        }
         $form_data = $_POST;
         // unset unwanted elements from form_data
         unset($form_data['PHPSESSID']) ;
-- 
2.17.1