diogo/xmpphp
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

* use htmlspecialchars instead of htmlentities

Browse Source 
git-svn-id: svn://netflint.net/xmpphp@17 ef36c318-a008-4979-b6e8-6b496270793b
This commit is contained in:
fritzy
2008-04-06 22:50:29 +00:00
parent d4876b1702
commit 912a17ac07
2 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
xmpp.php
View File

@@ -56,9 +56,9 @@ class XMPP extends XMLStream {
}
function message($to, $body, $type='chat', $subject=Null) {
$to = htmlentities($to);
$body = htmlentities($body);
$subject = htmlentities($subject);
$to = htmlspecialchars($to);
$body = htmlspecialchars($body);
$subject = htmlspecialchars($subject);
$out = "<message from='{$this->fulljid}' to='$to' type='$type'>";
if($subject) $out .= "<subject>$subject</subject>";
$out .= "<body>$body</body></message>";
@@ -66,8 +66,8 @@ class XMPP extends XMLStream {
}
function presence($status=Null, $show='available', $to=Null) {
$to = htmlentities($to);
$status = htmlentities($status);
$to = htmlspecialchars($to);
$status = htmlspecialchars($status);
if($show == 'unavailable') $type = 'unavailable';
$out = "<presence";
if($to) $out .= " to='$to'";