From 7ac7e8cd6f0000c0cf21df0ae52925dc89f5aefb Mon Sep 17 00:00:00 2001
From: Regis Houssin <regis@dolibarr.fr>
Date: Sun, 5 Feb 2006 16:26:23 +0000
Subject: [PATCH] =?UTF-8?q?Fix:=20probl=E8me=20avec=20les=20apostrophes?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 htdocs/contact/fiche.php | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/htdocs/contact/fiche.php b/htdocs/contact/fiche.php
index c2606373200..eaa2c6663c6 100644
--- a/htdocs/contact/fiche.php
+++ b/htdocs/contact/fiche.php
@@ -59,13 +59,13 @@ if ($_POST["action"] == 'add')
 
     $contact->socid        = $_POST["socid"];
 
-    $contact->name         = $_POST["name"];
-    $contact->firstname    = $_POST["firstname"];
+    $contact->name         = addslashes($_POST["name"]);
+    $contact->firstname    = addslashes($_POST["firstname"]);
     $contact->civilite_id  = $_POST["civilite_id"];
-    $contact->poste        = $_POST["poste"];
+    $contact->poste        = addslashes($_POST["poste"]);
     $contact->address      = addslashes($_POST["address"]);
     $contact->cp           = $_POST["cp"];
-    $contact->ville        = $_POST["ville"];
+    $contact->ville        = addslashes($_POST["ville"]);
     $contact->fk_pays      = $_POST["pays_id"];
     $contact->email        = $_POST["email"];
     $contact->phone_pro    = $_POST["phone_pro"];
@@ -74,7 +74,7 @@ if ($_POST["action"] == 'add')
     $contact->fax          = $_POST["fax"];
     $contact->jabberid     = $_POST["jabberid"];
 
-    $contact->note         = $_POST["note"];
+    $contact->note         = addslashes($_POST["note"]);
 
     if (! $_POST["name"])
     {
@@ -117,14 +117,14 @@ if ($_POST["action"] == 'update')
     $contact->old_firstname = $_POST["old_firstname"];
     
     $contact->socid         = $_POST["socid"];
-    $contact->name          = $_POST["name"];
-    $contact->firstname     = $_POST["firstname"];
+    $contact->name          = addslashes($_POST["name"]);
+    $contact->firstname     = addslashes($_POST["firstname"]);
     $contact->civilite_id   = $_POST["civilite_id"];
-    $contact->poste         = $_POST["poste"];
+    $contact->poste         = addslashes($_POST["poste"]);
     
     $contact->address       = addslashes($_POST["address"]);
     $contact->cp            = $_POST["cp"];
-    $contact->ville         = $_POST["ville"];
+    $contact->ville         = addslashes($_POST["ville"]);
     $contact->fk_pays       = $_POST["pays_id"];
     
     $contact->email         = $_POST["email"];
@@ -134,7 +134,7 @@ if ($_POST["action"] == 'update')
     $contact->fax           = $_POST["fax"];
     $contact->jabberid      = $_POST["jabberid"];
     
-    $contact->note          = $_POST["note"];
+    $contact->note          = addslashes($_POST["note"]);
     
     $result = $contact->update($_POST["contactid"], $user);