Trust the database (i.e. don't encode special characters twice)

author Joey Schulze <joey@infodrom.org>

Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)

committer Joey Schulze <joey@infodrom.org>

Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)
author Joey Schulze <joey@infodrom.org>
Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)
committer Joey Schulze <joey@infodrom.org>
Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)
diff --git a/lib/functions.inc b/lib/functions.inc

index 5b6c020..a81f2fb 100644 (file)
--- a/lib/functions.inc
+++ b/lib/functions.inc
@@ -245,8 +245,8 @@ function format_newspaper($id)
    $row = pg_fetch_array ($sth, 0);
  
    $ret = '<div class="newspaper">';
    $row = pg_fetch_array ($sth, 0);
  
    $ret = '<div class="newspaper">';
-  $ret .= sprintf('<h3>%s</h3>', htmlspecialchars($row['name']));
-  $zlist['newspaper'] = htmlspecialchars($row['name']);
+  $ret .= sprintf('<h3>%s</h3>', $row['name']);
+  $zlist['newspaper'] = $row['name'];
  
    $ret .= sprintf('<p>%s<br>Ort: %s<br>URL: <a href="%s"><code>%s</code></a></p>',
                   $row['description'], $row['city'],
  
    $ret .= sprintf('<p>%s<br>Ort: %s<br>URL: <a href="%s"><code>%s</code></a></p>',
                   $row['description'], $row['city'],
author	Joey Schulze <joey@infodrom.org>
	Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)
committer	Joey Schulze <joey@infodrom.org>
	Wed, 2 Jul 2008 14:54:22 +0000 (14:54 +0000)