PHP sanitize_for_textarea Exemples

Exemple #1

Fichier : post.php Projet : N3X15/ATBBS-Plus

    if (isset($_GET['quote_topic']) || ctype_digit($_GET['quote_reply'])) {
        // Fetch the topic...
        $res = false;
        if (isset($_GET['quote_topic'])) {
            $res = DB::Execute('SELECT body FROM {P}Topics WHERE id = ' . $_GET['reply']);
        } else {
            echo '@' . number_format($_GET['quote_reply']) . "\n\n";
            $res = DB::Execute('SELECT body FROM {P}Replies WHERE id = ' . $_GET['quote_reply']);
        }
        // Execute it.
        list($quoted_text) = $res->FetchRow();
        // Snip citations from quote.
        $quoted_text = trim(preg_replace('/^@([0-9,]+|OP)/m', '', $quoted_text));
        //Prefix newlines with >
        $quoted_text = preg_replace('/^/m', '> ', $quoted_text);
        echo sanitize_for_textarea($quoted_text) . "\n\n";
    } else {
        if (ctype_digit($_GET['cite'])) {
            echo '@' . number_format($_GET['cite']) . "\n\n";
        }
    }
}
echo '</textarea>';
if (ALLOW_IMAGES && !$editing) {
    echo '<label for="image" class="noscreen">Image</label> <input type="file" name="image" id="image" />';
}
?>
			
			<p><a href="/markup_syntax">Markup syntax</a>: <kbd>''</kbd> on each side of a word or part of text = <em>emphasis</em>. <kbd>'''</kbd> = <strong>strong emphasis</strong>. <kbd>></kbd> on the beginning of a line = quote. To mass quote a long section of text, surround it with <kbd>[quote]</kbd> tags. <abbr>URL</abbr>s are automatically linkified.  To display code, surround it in <kbd>[code]</kbd> tags.</p>
		</div>
		

Exemple #2

Fichier : edit_ignore_list.php Projet : N3X15/ATBBS-Plus

            $_SESSION['notice'] .= ' You must <a href="/dashboard">enable ostrich mode</a> for this to have any effect.';
        }
    } else {
        $ignored_phrases = $_POST['ignore_list'];
    }
}
$sql = DB::Prepare('SELECT ignored_phrases FROM {P}IgnoreLists WHERE uid = ?');
$res = DB::Execute($sql, array($_COOKIE['UID']));
list($ignored_phrases) = $res->FetchRow();
print_errors();
?>

<p>When ostrich mode is <a href="/dashboard">enabled</a>, any topic or reply that contains a phrase on your ignore list will be hidden. Citations to hidden replies will be replaced with "@hidden". Enter one (case insensitive) phrase per line.</p>

<form action="" method="post">
	<div>
		<textarea id="ignore_list" name="ignore_list" cols="80" rows="10"><?php 
echo sanitize_for_textarea($ignored_phrases);
?>
</textarea>
	</div>
	
	<div class="row">
		<input type="submit" name="form_sent" value="Update" />
	</div>

</form>

<?php 
Output::$tpl->display('dashfooter.tpl.php');
require 'includes/footer.php';

Exemple #3

Fichier : edit_content.php Projet : N3X15/ATBBS-Plus

		<label for="url">Path</label>
		<input id="url" name="url" value="<?php 
echo htmlspecialchars($page_data['url']);
?>
" />
	</div>
	
	<div class="row">	
		<label for="title">Page title</label>
		<input id="title" name="title" value="<?php 
echo htmlspecialchars($page_data['page_title']);
?>
" />
	</div>
	
	<div class="row">	
		 <textarea id="content" name="content" cols="120" rows="18" class="mceEditor"><?php 
echo sanitize_for_textarea($page_data['content']);
?>
</textarea>
	</div>
	
	<div class="row">
			<input type="submit" name="preview" value="Preview" class="inline" /> 
			<input type="submit" name="post" value="Submit" class="inline">
	</div>
</form>

<?php 
Output::$tpl->display('dashfooter.tpl.php');
require 'includes/footer.php';