Mirrors/dolibarr
1
0
Fork 0
mirror of https://github.com/Dolibarr/dolibarr.git synced 2025-02-20 13:46:52 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix: Try a fix for the _FILES escape problem.

Browse Source
This commit is contained in:
Laurent Destailleur 2012-06-01 20:51:31 +02:00
parent 61ed269044
commit 6147377e16
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
htdocs/main.inc.php
View File

@ -53,13 +53,14 @@ if (function_exists('get_magic_quotes_gpc')) // magic_quotes_* removed in PHP6
// Forcing parameter setting magic_quotes_gpc and cleaning parameters
// (Otherwise he would have for each position, condition
// Reading stripslashes variable according to state get_magic_quotes_gpc).
// Off mode (recommended, you just do $db->escape when an insert / update.
// Off mode recommended (just do $db->escape for insert / update).
function stripslashes_deep($value)
{
return (is_array($value) ? array_map('stripslashes_deep', $value) : stripslashes($value));
}
$_GET = array_map('stripslashes_deep', $_GET);
$_POST = array_map('stripslashes_deep', $_POST);
$_FILES = array_map('stripslashes_deep', $_FILES);
//$_COOKIE = array_map('stripslashes_deep', $_COOKIE); // Useless because a cookie should never be outputed on screen nor used into sql
@set_magic_quotes_runtime(0);
}