diff options
Diffstat (limited to 'admin/picture_modify.php')
-rw-r--r-- | admin/picture_modify.php | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/admin/picture_modify.php b/admin/picture_modify.php index 9f6877167..0dd6a237b 100644 --- a/admin/picture_modify.php +++ b/admin/picture_modify.php @@ -253,8 +253,8 @@ $template->assign_vars( 'TAG_SELECTION' => $tag_selection, 'DESCRIPTION' => - isset($_POST['description']) ? - stripslashes($_POST['description']) : @$row['comment'], + htmlspecialchars( isset($_POST['description']) ? + stripslashes($_POST['description']) : @$row['comment'] ), 'F_ACTION' => PHPWG_ROOT_PATH.'admin.php' @@ -347,7 +347,7 @@ if (isset($_GET['cat_id']) array( 'image_id' => $_GET['image_id'], 'image_file' => $image_file, - 'category' => $_GET['cat_id'], + 'category' => $cache['cat_names'][ $_GET['cat_id'] ], ) ); } @@ -359,7 +359,7 @@ else array( 'image_id' => $_GET['image_id'], 'image_file' => $image_file, - 'category' => $category, + 'category' => $cache['cat_names'][ $category ], ) ); break; |