Improved listform class.

tbrehm

2008-11-22 ae69e622d3bae420246fd5ac11a1f95545e74a9c

 interface/lib/classes/listform.inc.php

@@ -166,7 +166,7 @@
                    $this->searchValues[$search_prefix.$field] = $out;
            } else {
                if(isset($_SESSION['search'][$list_name][$search_prefix.$field])){
                    $this->searchValues[$search_prefix.$field] = $_SESSION['search'][$list_name][$search_prefix.$field];
                    $this->searchValues[$search_prefix.$field] = htmlspecialchars($_SESSION['search'][$list_name][$search_prefix.$field]);
                }
            }
        }
@@ -283,7 +283,7 @@
                   switch ($field['datatype']){
                    case 'VARCHAR':
                    case 'TEXT':
                        $record[$key] = stripslashes($record[$key]);
                        $record[$key] = htmlentities(stripslashes($record[$key]));
                         break;

                    case 'DATE':
@@ -295,7 +295,7 @@
                        break;

                    case 'DOUBLE':
                        $record[$key] = $record[$key];
                        $record[$key] = htmlentities($record[$key]);
                        break;

                    case 'CURRENCY':
@@ -303,7 +303,7 @@
                        break;

                    default:
                        $record[$key] = stripslashes($record[$key]);
                        $record[$key] = htmlentities(stripslashes($record[$key]));
                   }
            }
            }
@@ -361,6 +361,19 @@
      }   
   }

   function escapeArrayValues($search_values) {
		
      $out = array();
      if(is_array($search_values)) {
         foreach($search_values as $key => $val) {
            $out[$key] = htmlentities($val,ENT_QUOTES);
         }
      }
		
      return $out;
		
   }

}

?>