From a61e471e02b901727842745304b52f5c357734e8 Mon Sep 17 00:00:00 2001
From: plegall <plg@piwigo.org>
Date: Tue, 27 Jul 2010 12:37:38 +0000
Subject: merge r6713 from branch 2.1 to trunk

bug 1757 fixed: ability to use HTML in author field


git-svn-id: http://piwigo.org/svn/trunk@6714 68402e56-0260-453c-a942-63ccdbb3a9ee
---
 admin/picture_modify.php | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'admin/picture_modify.php')

diff --git a/admin/picture_modify.php b/admin/picture_modify.php
index a764f0bdb..4d15a9206 100644
--- a/admin/picture_modify.php
+++ b/admin/picture_modify.php
@@ -236,7 +236,11 @@ $template->assign(
 
     'REGISTRATION_DATE' => format_date($row['date_available']),
 
-    'AUTHOR' => isset($_POST['author']) ? $_POST['author'] : @$row['author'],
+    'AUTHOR' => htmlspecialchars(
+      isset($_POST['author'])
+        ? stripslashes($_POST['author'])
+        : @$row['author']
+      ),
 
     'DESCRIPTION' =>
       htmlspecialchars( isset($_POST['description']) ?
-- 
cgit v1.2.3