Revision history for Mod028bCategoryActionDoubleQuoteReliance
Revision [23263]
Last edited on 2016-05-20 07:38:47 by JavaWoman [Replaces old-style internal links with new pipe-split links.]Additions:
**[[JsnX | Jason Tourtelotte]]**
else $str .= '<li>'.$this->Format('[['.$val.' | '.preg_replace( "/Category/", "",$val).']]').'</li>';
else $str .= '<li>'.$this->Format('[['.$val.' | '.preg_replace( "/Category/", "",$val).']]').'</li>';
Deletions:
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
Revision [19283]
Edited on 2008-01-28 00:14:45 by JavaWoman [Modified links pointing to docs server]No Differences
Additions:
==== Wikka Mod 028 ====
Type: Bug Fix
----
===Credit:===
**[[JsnX Jason Tourtelotte]]**
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Type: Bug Fix
----
===Credit:===
**[[JsnX Jason Tourtelotte]]**
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Deletions:
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Additions:
==== Wikka Mod 028 ====
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
%%
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
%%
Deletions:
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w )\s(\w )/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col
Additions:
==== Wikka Mod 028 ====
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w )\s(\w )/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w )\s(\w )/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col
Deletions:
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
%%
Revision [1760]
Edited on 2004-10-08 19:36:10 by JavaWoman [double backslash in code caused PHP warnings; corrected to double slash]Additions:
==== Wikka Mod 028 ====
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; // Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Deletions:
Type: Bug Fix
----
===Credit:===
Jason Tourtelotte
----
Found out that the Category action relied on the double doublequote insecurity for html formatting.
Fixed with the code below.
**actions/category.php**
%%(php)
<?php
if ($cattag = $_REQUEST["wakka"])
{
$str ="";
if (!$col) { $col=1;}
if ($page=="/") {
$page="Category Category"; \\ Remove the space between the two category words.
} else
{
$page=$this->getPageTag();
}
// $page= preg_replace( "/(\w+)\s(\w+)/", "$1$2",$page);
if ($class) {$class="class=\"$class\"";}
if (!$page) {$page=$cattag;}
if ($results = $this->FullCategoryTextSearch($page))
{
if (!$compact) $str .= 'The following '.(count($results)-1).' pages belong to ' . $page . ': <br /><br /><table '.$class.' width="100%"><tr>';
else $str .= '<div '.$class.'><ul>';
$count = 0; $list = array();
foreach ($results as $i => $cpage) if($cpage['tag'] != $page) { array_push($list,$cpage['tag']);}
sort($list);
while (list($key, $val) = each($list)) {
if ($count == $col & !$compact) { $str .= "</tr><tr>"; $count=0; }
if (!$compact) $str .= '<td>'.$this->Format('[['.$val.']]').'</td>';
else $str .= '<li>'.$this->Format('[['.$val.' '.preg_replace( "/Category/", "",$val).']]').'</li>';
$count++;
}
if (!$compact) $str .= '</tr></table>'; else $str .= '</ul></div>';
}
else $str .= 'Sorry, no Items found for ' . $page .'.';
print($str);
}
?>
Revision [144]
Edited on 2004-04-10 20:18:10 by me-augustacuda1cable7a-138.agstme.adelphia.net [double backslash in code caused PHP warnings; corrected to double slash]Additions:
$page="Category Category"; \\ Remove the space between the two category words.
