htmlentities -> htmlspecialchars

This commit is contained in:
2024-12-06 15:35:38 +08:00
parent daa005f029
commit d9b2d13caa
184 changed files with 410 additions and 405 deletions

View File

@@ -12,7 +12,7 @@
<?php require_once('./include/set_post_key.php');?>
<div class="field">
<label for="username"><?php echo $MSG_NICK?>*</label>
<input name="nick" placeholder="<?php echo $MSG_Input.$MSG_NICK?>" type="text" value="<?php echo htmlentities($row['nick'],ENT_QUOTES,"UTF-8")?>">
<input name="nick" placeholder="<?php echo $MSG_Input.$MSG_NICK?>" type="text" value="<?php echo htmlspecialchars($row['nick'],ENT_QUOTES,"UTF-8")?>">
</div>
<div class="field">
<label class="ui header"><?php echo $MSG_PASSWORD?>*</label>
@@ -30,11 +30,11 @@
</div>
<div class="field">
<label for="username"><?php echo $MSG_SCHOOL?></label>
<input name="school" placeholder="<?php echo $MSG_SCHOOL?>" type="text" value="<?php echo htmlentities($row['school'],ENT_QUOTES,"UTF-8")?>">
<input name="school" placeholder="<?php echo $MSG_SCHOOL?>" type="text" value="<?php echo htmlspecialchars($row['school'],ENT_QUOTES,"UTF-8")?>">
</div>
<div class="field">
<label for="email"><?php echo $MSG_EMAIL?>*</label>
<input name="email" placeholder="<?php echo $MSG_EMAIL?>" type="text" value="<?php echo htmlentities($row['email'],ENT_QUOTES,"UTF-8")?>">
<input name="email" placeholder="<?php echo $MSG_EMAIL?>" type="text" value="<?php echo htmlspecialchars($row['email'],ENT_QUOTES,"UTF-8")?>">
</div>
<?php if($OJ_VCODE){?>
<div class="field">