Improved listform class.

tbrehm

2008-11-22 ae69e622d3bae420246fd5ac11a1f95545e74a9c

Improved listform class.

 interface/lib/classes/listform.inc.php

@@ -166,7 +166,7 @@
                    $this->searchValues[$search_prefix.$field] = $out;
            } else {
                if(isset($_SESSION['search'][$list_name][$search_prefix.$field])){
                    $this->searchValues[$search_prefix.$field] = $_SESSION['search'][$list_name][$search_prefix.$field];
                    $this->searchValues[$search_prefix.$field] = htmlspecialchars($_SESSION['search'][$list_name][$search_prefix.$field]);
                }
            }
        }
@@ -283,7 +283,7 @@
                    switch ($field['datatype']){
                    case 'VARCHAR':
                    case 'TEXT':
                        $record[$key] = stripslashes($record[$key]);
                        $record[$key] = htmlentities(stripslashes($record[$key]));
                         break;

                    case 'DATE':
@@ -295,7 +295,7 @@
                        break;

                    case 'DOUBLE':
                        $record[$key] = $record[$key];
                        $record[$key] = htmlentities($record[$key]);
                        break;

                    case 'CURRENCY':
@@ -303,7 +303,7 @@
                        break;

                    default:
                        $record[$key] = stripslashes($record[$key]);
                        $record[$key] = htmlentities(stripslashes($record[$key]));
                    }
                }
            }
@@ -360,6 +360,19 @@
            return $app->lng($msg);
        }    
    }
	
    function escapeArrayValues($search_values) {
		
        $out = array();
        if(is_array($search_values)) {
            foreach($search_values as $key => $val) {
                $out[$key] = htmlentities($val,ENT_QUOTES);
            }
        }
		
        return $out;
		
    }

}