diff options
| author | Steven Wittens <steven@10.no-reply.drupal.org> | 2005-05-18 21:12:17 +0000 |
|---|---|---|
| committer | Steven Wittens <steven@10.no-reply.drupal.org> | 2005-05-18 21:12:17 +0000 |
| commit | 5154c3aca4c9362cbd0fb236e0ea9dd5c7c0aa78 (patch) | |
| tree | 7593d7bd608e79ed6e18bc703af4da73e2f51cfb /modules/drupal.module | |
| parent | c3cf0622b62f2e72364417becf141316f069a9c5 (diff) | |
| download | brdo-5154c3aca4c9362cbd0fb236e0ea9dd5c7c0aa78.tar.gz brdo-5154c3aca4c9362cbd0fb236e0ea9dd5c7c0aa78.tar.bz2 | |
- Fixing some plain/url check calls.
Diffstat (limited to 'modules/drupal.module')
| -rw-r--r-- | modules/drupal.module | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/modules/drupal.module b/modules/drupal.module index 8295d8778..143ee798a 100644 --- a/modules/drupal.module +++ b/modules/drupal.module @@ -114,8 +114,10 @@ function drupal_directory_ping($arguments) { function drupal_directory_page($sort = 'name') { $result = db_query('SELECT * FROM {directory} ORDER BY '. $sort); + // Note: All fields except the mission are treated as plain-text. + // The mission is stripped of any HTML tags to keep the output simple and consistent. while ($site = db_fetch_object($result)) { - $output .= "<a href=\"$site->link\">$site->name</a> - $site->slogan<div style=\"padding-left: 20px;\">$site->mission</div><br />"; + $output .= '<a href="'. check_url($site->link) .'">'. check_plain($site->name) .'</a> - '. check_plain($site->slogan) .'<div style="padding-left: 20px;">'. strip_tags($site->mission) .'</div><br />'; } return $output; |