diff --git a/app/dialplans/dialplan_add.php b/app/dialplans/dialplan_add.php index 012dcd2ce1..65edf8d731 100644 --- a/app/dialplans/dialplan_add.php +++ b/app/dialplans/dialplan_add.php @@ -17,7 +17,7 @@ The Initial Developer of the Original Code is Mark J Crane - Portions created by the Initial Developer are Copyright (C) 2008-2016 + Portions created by the Initial Developer are Copyright (C) 2008-2018 the Initial Developer. All Rights Reserved. Contributor(s): @@ -324,10 +324,10 @@ echo "\n"; echo "\n"; - echo " ".$text['label-name']."\n"; + echo " ".$text['label-name']."\n"; echo "\n"; echo "\n"; - echo " \n"; + echo " \n"; echo "
\n"; echo "\n"; echo "\n"; @@ -341,13 +341,13 @@ //echo " \n"; echo " \n"; if (strlen($condition_field_1) > 0) { - echo " \n"; + echo " \n"; } echo " \n"; echo " \n"; @@ -438,7 +438,7 @@ echo " \n"; //echo "    ".$text['label-expression']."\n"; echo " \n"; - echo "  \n"; + echo "  \n"; echo " \n"; echo " \n"; echo " \n"; @@ -492,7 +492,7 @@ echo " \n"; + echo "  \n"; echo " \n"; echo " \n"; echo " \n"; @@ -540,7 +540,7 @@ echo " ".$text['label-action_1']."\n"; echo "\n"; echo "\n"; - echo $destination->select('dialplan', 'action_1', $action_1); + echo $destination->select('dialplan', 'action_1', escape($action_1)); echo "\n"; echo "\n"; @@ -552,7 +552,7 @@ echo " ".$text['label-action_2']."\n"; echo "\n"; echo "\n"; - echo $destination->select('dialplan', 'action_2', $action_2); + echo $destination->select('dialplan', 'action_2', escape($action_2)); echo "\n"; echo "\n"; @@ -561,7 +561,7 @@ echo " ".$text['label-context']."\n"; echo " \n"; echo " \n"; - echo " \n"; + echo " \n"; echo "
\n"; echo " \n"; echo "\n"; @@ -573,8 +573,8 @@ echo "\n"; echo " \n"; + echo " \n"; echo "
\n"; echo " \n"; echo "\n"; @@ -622,7 +622,7 @@ echo "\n"; echo " \n"; if ($action == "update") { - echo " \n"; + echo " \n"; } echo "
"; echo " \n";