From 75bcf8a48f883fd993964b886040aa8a4f1a1f39 Mon Sep 17 00:00:00 2001 From: Regis Houssin Date: Wed, 7 Jun 2006 16:02:18 +0000 Subject: [PATCH] =?UTF-8?q?A=20v=E9rifier=20mais=20j'ai=20du=20ajouter=20e?= =?UTF-8?q?ncore=20des=20addslashes=20car=20il=20ne=20prenait=20plus=20les?= =?UTF-8?q?=20quotes=20=20dans=20le=20libell=E9,=20la=20description=20et?= =?UTF-8?q?=20note?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- htdocs/product.class.php | 6 +++--- htdocs/product/fiche.php | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/htdocs/product.class.php b/htdocs/product.class.php index 37de0243aba..73f77ae0706 100644 --- a/htdocs/product.class.php +++ b/htdocs/product.class.php @@ -208,9 +208,9 @@ class Product if (! $this->libelle) $this->libelle = 'LIBELLE MANQUANT'; $this->ref = trim(sanitize_string($this->ref)); - $this->libelle = trim($this->libelle); - $this->description = trim($this->description); - $this->note = trim($this->note); + $this->libelle = trim(addslashes($this->libelle)); + $this->description = trim(addslashes($this->description)); + $this->note = trim(addslashes($this->note)); $sql = "UPDATE ".MAIN_DB_PREFIX."product "; $sql .= " SET label = '" . addslashes($this->libelle) ."'"; diff --git a/htdocs/product/fiche.php b/htdocs/product/fiche.php index 88e4394dfc2..e866b942239 100644 --- a/htdocs/product/fiche.php +++ b/htdocs/product/fiche.php @@ -121,7 +121,7 @@ if ($_POST["action"] == 'update' && $product->ref = stripslashes($_POST["ref"]); $product->libelle = stripslashes($_POST["libelle"]); if ( isset( $_POST["price"] ) ) - $product->price = stripslashes($_POST["price"]); + $product->price = stripslashes($_POST["price"]); $product->tva_tx = $_POST["tva_tx"]; $product->description = stripslashes($_POST["desc"]); $product->note = stripslashes($_POST["note"]);