function secureMySQL($input) { global $config; if ($config->get('core', 'allow-html-tags') != '1') { $input = strip_tags($input); } return mysql_real_escape_string(convertLineBreaks($input)); }
} else { //Poll has been saved if (isset($_POST['send']) && $_POST['send'] == 1) { if (trim($_POST['pollname'] != "")) { $pollname = trim($_POST['pollname']); $add_failed = false; } else { $smarty->assign('value_pollname', $_POST['pollname']); $smarty->assign('value_questions', $_POST['question']); $smarty->assign('value_checkbox', $_POST['buttontype']); $add_failed = true; } if (!$add_failed) { //Edit the values $buttontype = isset($_POST['buttontype']) && $_POST['buttontype'] == "on" ? "checkbox" : "radio"; $poll->updatePoll(convertLineBreaks($_POST['pollname']), $_POST['pollID'], $buttontype); if (isset($_POST['equestion'])) { foreach ($_POST['equestion'] as $questionID => $questionText) { if (trim($questionText) != "") { $poll->updateQuestion($questionText, $questionID); } else { $poll->deleteQuestionByID($questionID); } } } if (isset($_POST['question'])) { foreach ($_POST['question'] as $question) { if (trim($question) != "") { $poll->addQuestion($question, $_POST['pollID']); } }