Changeset 6280
- Timestamp:
- 08/04/08 15:00:16 (2 months ago)
- Files:
-
- modules/branches/2.4/recordings/functions.inc.php (modified) (2 diffs)
- modules/branches/2.4/recordings/module.xml (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
- Modified
- Copied
- Moved
modules/branches/2.4/recordings/functions.inc.php
r5335 r6280 104 104 $fname = $filename; 105 105 } 106 $displayname = addslashes($displayname); 106 107 sql("INSERT INTO recordings values ('', '$displayname', '$fname', 'No long description available')"); 107 108 return true; … … 112 113 113 114 // Update the descriptive fields 114 $results = sql("UPDATE recordings SET displayname = \"$rname\", description = \"$descr\"WHERE id = \"$id\"");115 $results = sql("UPDATE recordings SET displayname = '".addslashes($rname)."', description = '".addslashes($descr)."' WHERE id = \"$id\""); 115 116 116 117 // Build the file list from _REQUEST modules/branches/2.4/recordings/module.xml
r5810 r6280 2 2 <rawname>recordings</rawname> 3 3 <name>Recordings</name> 4 <version>3.3.6. 2</version>4 <version>3.3.6.3</version> 5 5 <candisable>no</candisable> 6 6 <canuninstall>no</canuninstall> … … 9 9 <description>Creates and manages system recordings, used by many other modules (eg, IVR).</description> 10 10 <changelog> 11 *3.3.6.3* #2988 fix potential SQL injection 11 12 *3.3.6.2* #2604, #2843 fix mal-formed html tags, Russian Translation 12 13 *3.3.6.1* #2591, enhance code so bad directory copy errors are reported
