diff --git a/app/xml_cdr/xml_cdr_details.php b/app/xml_cdr/xml_cdr_details.php index d6678691c5..eaefb69440 100644 --- a/app/xml_cdr/xml_cdr_details.php +++ b/app/xml_cdr/xml_cdr_details.php @@ -117,7 +117,7 @@ echo "\n"; echo "".$text['title2']."\n"; echo "\n"; - echo " \n"; + echo " \n"; echo "\n"; echo "\n"; echo "\n"; @@ -203,7 +203,7 @@ echo "\n"; echo "\n"; - echo " ".$direction."\n"; + echo " ".escape($direction)."\n"; //echo " ".$language."\n"; //echo " ".$context."\n"; echo " "; @@ -223,18 +223,18 @@ echo " "; if (file_exists($_SESSION['switch']['recordings']['dir'].'/'.$_SESSION['domain_name'].'/archive/'.$tmp_year.'/'.$tmp_month.'/'.$tmp_day.'/'.$uuid.'.wav')) { echo " \n"; - echo $caller_id_number.' '; + echo escape($caller_id_number).' '; echo " "; } else { - echo $caller_id_number.' '; + echo escape($caller_id_number).' '; } echo " \n"; - echo " ".$destination_number."\n"; - echo " ".$start_stamp."\n"; - echo " ".$end_stamp."\n"; - echo " ".$duration."\n"; - echo " ".$hangup_cause."\n"; + echo " ".escape($destination_number)."\n"; + echo " ".escape($start_stamp)."\n"; + echo " ".escape($end_stamp)."\n"; + echo " ".escape($duration)."\n"; + echo " ".escape($hangup_cause)."\n"; echo ""; echo "

\n"; @@ -257,8 +257,8 @@ if (is_array($array["channel_data"])) foreach($array["channel_data"] as $key => $value) { $value = urldecode($value); echo "\n"; - echo " ".$key." \n"; - echo " ".wordwrap($value,75,"
\n", TRUE)." \n"; + echo " ".escape($key)." \n"; + echo " ".wordwrap(escape($value),75,"
\n", TRUE)." \n"; echo "\n"; $c = $c ? 0 : 1; } @@ -287,10 +287,10 @@ $value = urldecode($value); if ($key != "digits_dialed" && $key != "dsn") { echo "\n"; - echo " ".$key."\n"; + echo " ".escape($key)."\n"; if ($key == "bridge_uuid" || $key == "signal_bond") { echo " \n"; - echo " ".$value." \n"; + echo " ".escape($value)." \n"; $tmp_dir = $_SESSION['switch']['recordings']['dir'].'/'.$_SESSION['domain_name'].'/archive/'.$tmp_year.'/'.$tmp_month.'/'.$tmp_day; $tmp_name = ''; if (file_exists($tmp_dir.'/'.$value.'.wav')) { @@ -318,7 +318,7 @@ echo "\n"; } else { - echo " ".wordwrap($value,75,"
\n", true)." \n"; + echo " ".wordwrap(escape($value),75,"
\n", true)." \n"; } echo "\n"; } @@ -351,8 +351,8 @@ $app_name = $row["@attributes"]["app_name"]; $app_data = urldecode($row["@attributes"]["app_data"]); echo "\n"; - echo " ".$app_name." \n"; - echo " ".wordwrap($app_data,75,"
\n", true)." \n"; + echo " ".escape($app_name)." \n"; + echo " ".wordwrap(escape($app_data),75,"
\n", true)." \n"; echo "\n"; $c = $c ? 0 : 1; } @@ -387,8 +387,8 @@ foreach($row["@attributes"] as $key => $value) { $value = urldecode($value); echo " \n"; - echo " ".$key." \n"; - echo " ".wordwrap($value,75,"
\n", true)." \n"; + echo " ".escape($key)." \n"; + echo " ".wordwrap(escape($value),75,"
\n", true)." \n"; echo " \n"; $c = $c ? 0 : 1; } @@ -415,8 +415,8 @@ foreach($row["extension"]["@attributes"] as $key => $value) { $value = urldecode($value); echo " \n"; - echo " ".$key." \n"; - echo " ".wordwrap($value,75,"
\n", true)." \n"; + echo " ".escape($key)." \n"; + echo " ".wordwrap(escape($value),75,"
\n", true)." \n"; echo " \n"; $c = $c ? 0 : 1; } @@ -444,8 +444,8 @@ $app_name = $tmp_row["@attributes"]["app_name"]; $app_data = urldecode($tmp_row["@attributes"]["app_data"]); echo " \n"; - echo " ".$app_name." \n"; - echo " ".wordwrap($app_data,75,"
\n", true)." \n"; + echo " ".escape($app_name)." \n"; + echo " ".wordwrap(escape($app_data),75,"
\n", true)." \n"; echo " \n"; $c = $c ? 0 : 1; } @@ -476,23 +476,23 @@ if ($key != "originatee") { if (is_array($value)) { $value = implode($value); } $value = urldecode($value); - echo " ".$key." \n"; - echo " ".wordwrap($value,75,"
\n", true)." \n"; + echo " ".escape($key)." \n"; + echo " ".wordwrap(escape($value),75,"
\n", true)." \n"; } else { - echo " ".$key." \n"; + echo " ".escape($key)." \n"; echo " \n"; echo " \n"; if (isset($child["originatee_caller_profile"])) { foreach($child["originatee_caller_profile"] as $key => $value) { //print_r($tmp_child); echo " \n"; - echo " \n"; + echo " \n"; if ($key != "uuid") { - echo " \n"; + echo " \n"; } else { - echo " \n"; + echo " \n"; } echo " \n"; } @@ -524,8 +524,8 @@ foreach($row["times"] as $key => $value) { $value = urldecode($value); echo " \n"; - echo " \n"; - echo " \n"; + echo " \n"; + echo " \n"; echo " \n"; $c = $c ? 0 : 1; } @@ -547,4 +547,4 @@ //get the footer require_once "resources/footer.php"; -?> \ No newline at end of file +?>
".$key." ".escape($key)." ".wordwrap($value,75,"
\n", true)." 		".wordwrap(escape($value),75,"
\n", true)." 		".$value." ".escape($value)." 
".$key." ".wordwrap($value,75,"
\n", true)." 		".escape($key)." ".wordwrap(escape($value),75,"
\n", true)."