Skip to content
Permalink
Browse files Browse the repository at this point in the history
Some html encoding
  • Loading branch information
acrylian committed Dec 11, 2018
1 parent 05628bc commit 9db85fc
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions zp-core/template-functions.php
Expand Up @@ -4131,11 +4131,11 @@ function search_(way) {
<li><label><input type="checkbox" name="checkall_searchfields" id="checkall_searchfields" checked="checked">* <?php echo gettext('Check/uncheck all'); ?> *</label></li>
<?php
foreach ($fields as $display => $key) {
echo '<li><label><input id="SEARCH_' . $key . '" name="SEARCH_' . $key . '" type="checkbox"';
echo '<li><label><input id="SEARCH_' . html_encode($key) . '" name="SEARCH_' . html_encode($key) . '" type="checkbox"';
if (in_array($key, $query_fields)) {
echo ' checked="checked" ';
}
echo ' value="' . $key . '" /> ' . $display . "</label></li>" . "\n";
echo ' value="' . html_encode($key) . '" /> ' . $display . "</label></li>" . "\n";
}
?>
</ul>
Expand Down

0 comments on commit 9db85fc

Please sign in to comment.