From acdf23fd17be67d0b20eac89cd4d88669885f1d7 Mon Sep 17 00:00:00 2001
From: deva <deva>
Date: Mon, 1 Dec 2008 10:15:51 +0000
Subject: Fixed escaping problem on posting of new and edited contacts.

---
 forum/utils/addressbook.php | 13 +++++++++++++
 1 file changed, 13 insertions(+)

(limited to 'forum')

diff --git a/forum/utils/addressbook.php b/forum/utils/addressbook.php
index fb34156..20548ce 100644
--- a/forum/utils/addressbook.php
+++ b/forum/utils/addressbook.php
@@ -41,6 +41,19 @@ function form($cid,
 }
 
 
+$name = stripslashes($name);
+$co = stripslashes($co);
+$address = stripslashes($address);
+$city = stripslashes($city);
+$country = stripslashes($country);
+$phone = stripslashes($phone);
+$phone2 = stripslashes($phone2);
+$email = stripslashes($email);
+$email2 = stripslashes($email2);
+$url = stripslashes($url);
+$url2 = stripslashes($url2);
+$notes = stripslashes($notes);
+
 $contacts = new Contacts($DATA_DIR . "/contacts.xml");
 
 if($action == "addgroup" && $gid) {
-- 
cgit v1.2.3