includes/clientside/tinymce/plugins/emotions/jscripts/functions.js
author Dan
Wed, 12 Dec 2007 21:04:20 -0500
changeset 316 c74736571f43
parent 1 fe660c52c48f
permissions -rw-r--r--
SECURITY: CRITICAL: Fix SQL injection in admin CP page editor

function init() {
	tinyMCEPopup.resizeToInnerSize();
}

function insertEmotion(file_name, title) {
	title = tinyMCE.getLang(title);

	if (title == null)
		title = "";

	// XML encode
	title = title.replace(/&/g, '&');
	title = title.replace(/\"/g, '"');
	title = title.replace(/</g, '&lt;');
	title = title.replace(/>/g, '&gt;');

	var html = '<img src="' + tinyMCE.baseURL + "/plugins/emotions/images/" + file_name + '" mce_src="' + tinyMCE.baseURL + "/plugins/emotions/images/" + file_name + '" border="0" alt="' + title + '" title="' + title + '" />';

	tinyMCE.execCommand('mceInsertContent', false, html);
	tinyMCEPopup.close();
}