nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2025-12-30 00:53:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Escape user data on call_recording_edit.php (#3094)

Browse Source
This commit is contained in:
AlexanderDCrane
2018-06-09 11:01:55 -06:00
committed by FusionPBX
parent aaa73d8ca0
commit a62e7d2fc8
1 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
app/call_recordings/call_recording_edit.php
View File

@@ -17,7 +17,7 @@
The Initial Developer of the Original Code is
Mark J Crane <markjcrane@fusionpbx.com>
Portions created by the Initial Developer are Copyright (C) 2017
Portions created by the Initial Developer are Copyright (C) 2018
the Initial Developer. All Rights Reserved.
Contributor(s):
@@ -185,7 +185,7 @@
echo " ".$text['label-call_recording_name']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld' type='text' name='call_recording_name' maxlength='255' value=\"$call_recording_name\">\n";
echo " <input class='formfld' type='text' name='call_recording_name' maxlength='255' value=\"".escape($call_recording_name)."\">\n";
echo "<br />\n";
echo $text['description-call_recording_name']."\n";
echo "</td>\n";
@@ -196,7 +196,7 @@
echo " ".$text['label-call_recording_path']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld' type='text' name='call_recording_path' maxlength='255' value=\"$call_recording_path\">\n";
echo " <input class='formfld' type='text' name='call_recording_path' maxlength='255' value=\"".escape($call_recording_path)."\">\n";
echo "<br />\n";
echo $text['description-call_recording_path']."\n";
echo "</td>\n";
@@ -207,7 +207,7 @@
echo " ".$text['label-call_recording_length']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld' type='text' name='call_recording_length' maxlength='255' value='$call_recording_length'>\n";
echo " <input class='formfld' type='text' name='call_recording_length' maxlength='255' value='".escape($call_recording_length)."'>\n";
echo "<br />\n";
echo $text['description-call_recording_length']."\n";
echo "</td>\n";
@@ -218,7 +218,7 @@
echo " ".$text['label-call_recording_date']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld datetimepicker' type='text' name='call_recording_date' maxlength='16' value=\"$call_recording_date\">\n";
echo " <input class='formfld datetimepicker' type='text' name='call_recording_date' maxlength='16' value=\"".escape($call_recording_date)."\">\n";
echo "<br />\n";
echo $text['description-call_recording_date']."\n";
echo "</td>\n";
@@ -229,7 +229,7 @@
echo " ".$text['label-call_direction']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld' type='text' name='call_direction' maxlength='255' value=\"$call_direction\">\n";
echo " <input class='formfld' type='text' name='call_direction' maxlength='255' value=\"".escape($call_direction)."\">\n";
echo "<br />\n";
echo $text['description-call_direction']."\n";
echo "</td>\n";
@@ -240,7 +240,7 @@
echo " ".$text['label-call_recording_description']."\n";
echo "</td>\n";
echo "<td class='vtable' style='position: relative;' align='left'>\n";
echo " <input class='formfld' type='text' name='call_recording_description' maxlength='255' value=\"$call_recording_description\">\n";
echo " <input class='formfld' type='text' name='call_recording_description' maxlength='255' value=\"".escape($call_recording_description)."\">\n";
echo "<br />\n";
echo $text['description-call_recording_description']."\n";
echo "</td>\n";