Skip to content

Commit

Permalink
Update database_transactions.php (fusionpbx#3293)
Browse files Browse the repository at this point in the history
  • Loading branch information
@alexdcrane @markjcrane
alexdcrane authored and markjcrane committed Aug 27, 2018
1 parent 22ba941 commit 233b465
Showing 1 changed file with 14 additions and 14 deletions.
28 changes: 14 additions & 14 deletions app/database_transactions/database_transactions.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -118,7 +118,7 @@
echo " <td width='50%' align='left' nowrap='nowrap'><b>".$text['title-database_transactions']."</b></td>\n";
echo " <form method='get' action=''>\n";
echo " <td width='50%' style='vertical-align: top; text-align: right; white-space: nowrap;'>\n";
echo " <input type='text' class='txt' style='width: 150px' name='search' id='search' value='".$search."'>\n";
echo " <input type='text' class='txt' style='width: 150px' name='search' id='search' value='".escape($search)."'>\n";
echo " <input type='submit' class='btn' name='submit' value='".$text['button-search']."'>\n";
echo " </td>\n";
echo " </form>\n";
Expand All @@ -145,25 +145,25 @@
if (is_array($result)) {
foreach($result as $row) {
if (permission_exists('database_transaction_edit')) {
$tr_link = "href='database_transaction_edit.php?id=".$row['database_transaction_uuid']."'";
$tr_link = "href='database_transaction_edit.php?id=".escape($row['database_transaction_uuid'])."'";
}
echo "<tr ".$tr_link.">\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['domain_name']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['username']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['app_name']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_code']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_address']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_type']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_date']."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_old']."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_new']."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".$row['transaction_result']."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['domain_name'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['username'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['app_name'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_code'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_address'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_type'])."&nbsp;</td>\n";
echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_date'])."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_old']."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_new']."&nbsp;</td>\n";
//echo " <td valign='top' class='".$row_style[$c]."'>".escape($row['transaction_result']."&nbsp;</td>\n";
echo " <td class='list_control_icons'>";
if (permission_exists('database_transaction_edit')) {
echo "<a href='database_transaction_edit.php?id=".$row['database_transaction_uuid']."' alt='".$text['button-edit']."'>$v_link_label_edit</a>";
echo "<a href='database_transaction_edit.php?id=".escape($row['database_transaction_uuid'])."' alt='".$text['button-edit']."'>$v_link_label_edit</a>";
}
//if (permission_exists('database_transaction_delete')) {
// echo "<a href='database_transaction_delete.php?id=".$row['database_transaction_uuid']."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>";
// echo "<a href='database_transaction_delete.php?id=".escape($row['database_transaction_uuid'])."' alt='".$text['button-delete']."' onclick=\"return confirm('".$text['confirm-delete']."')\">$v_link_label_delete</a>";
//}
echo " </td>\n";
echo "</tr>\n";
Expand Down

0 comments on commit 233b465

Please sign in to comment.