Mercurial Mercurial > repos > enano-1.0 / comparison
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
plugins/SpecialUserFuncs.php
changeset 336 4fb4b6647e96
parent 318 eec2dfd2f0a3
child 343 7e6537fd4730
equal deleted inserted replaced
335:59fee40b4644 336:4fb4b6647e96 
   927               <select name="theme">
 
   927               <select name="theme">
 
   928                <?php
 
   928                <?php
 
   929                 foreach($template->theme_list as $t) {
 
   929                 foreach($template->theme_list as $t) {
 
   930                   if($t['enabled'])
 
   930                   if($t['enabled'])
 
   931                   {
 
   931                   {
 
   932                     echo '<option value="'.$t['theme_id'].'"';
 
   932                     echo '<option value="'.htmlspecialchars($t['theme_id']).'"';
 
   933                     if($t['theme_id'] == $session->theme) echo ' selected="selected"';
 
   933                     if($t['theme_id'] == $session->theme) echo ' selected="selected"';
 
   934                     echo '>'.$t['theme_name'].'</option>';
 
   934                     echo '>'.htmlspecialchars($t['theme_name']).'</option>';
 
   935                   }
 
   935                   }
 
   936                 }
 
   936                 }
 
   937                ?>
 
   937                ?>
 
   938               </select>
 
   938               </select>
 
   939             </p>
 
   939             </p>
 
   940             <p><input type="hidden" name="return_to" value="<?php echo $ret; ?>" />
 
   940             <p><input type="hidden" name="return_to" value="<?php echo htmlspecialchars($ret); ?>" />
 
   941                <input type="submit" name="themeselected" value="Continue" /></p>
 
   941                <input type="submit" name="themeselected" value="Continue" /></p>
 
   942           <?php } else { 
   942           <?php } else { 
   943             $theme = $_POST['theme'];
 
   943             $theme = $_POST['theme'];
 
   944             if ( !preg_match('/^([0-9A-z_-]+)$/i', $theme ) )
 
   944             if ( !preg_match('/^([0-9A-z_-]+)$/i', $theme ) )
 
   945               die('Hacking attempt');
 
   945               die('Hacking attempt');
 
   966                     echo '<option value="'.$l.'">'.capitalize_first_letter($l).'</option>';
 
   966                     echo '<option value="'.$l.'">'.capitalize_first_letter($l).'</option>';
 
   967                   }
 
   967                   }
 
   968                 ?>
 
   968                 ?>
 
   969               </select>
 
   969               </select>
 
   970             </p>
 
   970             </p>
 
   971             <p><input type="hidden" name="return_to" value="<?php echo $ret; ?>" />
 
   971             <p><input type="hidden" name="return_to" value="<?php echo htmlspecialchars($ret); ?>" />
 
   972                <input type="hidden" name="theme" value="<?php echo $theme; ?>" />
 
   972                <input type="hidden" name="theme" value="<?php echo htmlspecialchars($theme); ?>" />
 
   973                <input type="submit" name="allclear" value="Change style" /></p>
 
   973                <input type="submit" name="allclear" value="Change style" /></p>
 
   974           <?php } ?>
 
   974           <?php } ?>
 
   975         </form>
 
   975         </form>
 
   976       <?php
 
   976       <?php
 
   977     $template->footer();
 
   977     $template->footer();
Enano CMS (1.0.x)