Project

General

Profile

Bug #19935 » bug_10298_4-2.diff

Administrator Admin, 2009-02-09 17:13

View differences:

t3lib/class.t3lib_bedisplaylog.php (Arbeitskopie)
$this->lastUserLabel=$code.'_'.$workspace;
$label = $this->be_user_Array[$code]['username'];
$ws = $this->wsArray[$workspace];
return ($label ? $label : '['.$code.']').'@'.($ws?$ws:$workspace);
return ($label ? htmlspecialchars($label) : '['.$code.']').'@'.($ws?$ws:$workspace);
} else return '.';
}
......
* Get action label for log listing
*
* @param string Key for the action label in locallang
* @return string If labe is different from last action label then the label is returned, otherwise "."
* @return string If label is different from last action label then the label is returned, otherwise "."
*/
function getActionLabel($code) {
if ($this->lastActionLabel!=$code) {
$this->lastActionLabel=$code;
$label=$GLOBALS['LANG']->getLL('action_'.$code);
return $label ? $label : '['.$code.']';
return $label ? htmlspecialchars($label) : '['.$code.']';
} else return '.';
}
......
} else {
list($label) = explode(',',$text);
}
if ($label) {$text=$label;}
if ($label) {
$text=$label;
}
$text = sprintf($text, htmlspecialchars($data[0]),htmlspecialchars($data[1]),htmlspecialchars($data[2]),htmlspecialchars($data[3]),htmlspecialchars($data[4]));
} else {
$text = str_replace('%s','',$text);
typo3/alt_main.php (Arbeitskopie)
function typoSetup() { //
this.PATH_typo3 = "'.$pt3.'";
this.PATH_typo3_enc = "'.rawurlencode($pt3).'";
this.username = "'.$BE_USER->user['username'].'";
this.username = "'.htmlspecialchars($BE_USER->user['username']).'";
this.uniqueID = "'.t3lib_div::shortMD5(uniqid('')).'";
this.navFrameWidth = 0;
}
typo3/backend.php (Arbeitskopie)
function typoSetup() { //
this.PATH_typo3 = "'.$pathTYPO3.'";
this.PATH_typo3_enc = "'.rawurlencode($pathTYPO3).'";
this.username = "'.$GLOBALS['BE_USER']->user['username'].'";
this.username = "'.htmlspecialchars($GLOBALS['BE_USER']->user['username']).'";
this.uniqueID = "'.t3lib_div::shortMD5(uniqid('')).'";
this.navFrameWidth = 0;
}
typo3/alt_intro.php (Arbeitskopie)
$this->content.='<p class="c-user">'.
htmlspecialchars($LANG->getLL('userInfo')).
sprintf(' <strong>%s</strong> (%s)',
$BE_USER->user['username'],
(implode(', ',array($BE_USER->user['realName'],$BE_USER->user['email'])))
htmlspecialchars($BE_USER->user['username']),
htmlspecialchars(implode(', ',array($BE_USER->user['realName'],$BE_USER->user['email'])))
).
'</p>
<br />
typo3/sysext/beuser/mod/index.php (Arbeitskopie)
}
}
$outTable = '<table border="0" cellpadding="1" cellspacing="1"><tr class="bgColor5"><td>'.t3lib_iconWorks::getIconImage('be_users',$tempBE_USER->user,$GLOBALS['BACK_PATH'],'class="absmiddle" title="'.$tempBE_USER->user['uid'].'"').$tempBE_USER->user['username'].'</td>';
$outTable.= '<td>'.$tempBE_USER->user['realName'].($tempBE_USER->user['email'] ? ', <a href="mailto:'.$tempBE_USER->user['email'].'">'.$tempBE_USER->user['email'].'</a>' : '').'</td>';
$email = htmlspecialchars($tempBE_USER->user['email']);
$realname = htmlspecialchars($tempBE_USER->user['realName']);
$outTable = '<table border="0" cellpadding="1" cellspacing="1"><tr class="bgColor5"><td>'.t3lib_iconWorks::getIconImage('be_users',$tempBE_USER->user,$GLOBALS['BACK_PATH'],'class="absmiddle" title="'.$tempBE_USER->user['uid'].'"').htmlspecialchars($tempBE_USER->user['username']).'</td>';
$outTable.= '<td>'.($realname?$realname.', ':'').($email ? '<a href="mailto:'.$email.'">'.$email.'</a>' : '').'</td>';
$outTable.= '<td>'.$this->elementLinks('be_users',$tempBE_USER->user).'</td></tr></table>';
$outTable.= '<strong><a href="'.htmlspecialchars($this->MCONF['_']).'">&lt; Back to overview</a></strong><br />';
......
$comparation[$md5]=$tempBE_USER->ext_printOverview($uInfo,$compareFlags);
$comparation[$md5]['users']=array();
}
$comparation[$md5]['users'][]=$tempBE_USER->user; //array('uid'=>$r['uid'],'username'=>$r['username'],'realName'=>$tempBE_USER->user['realName'],'email'=>$tempBE_USER->user['email'],'admin'=>$tempBE_USER->user['admin']);
$comparation[$md5]['users'][]=$tempBE_USER->user;
unset($tempBE_USER);
}
$counter++;
......
* @return string the HTML anchor
*/
function linkUser($str,$rec) {
return '<a href="'.htmlspecialchars($this->MCONF['_']).'&be_user_uid='.$rec['uid'].'">'.$str.'</a>';
return '<a href="'.htmlspecialchars($this->MCONF['_']).'&be_user_uid='.$rec['uid'].'">' . htmlspecialchars($str) . '</a>';
}
(4-4/5)