[fusion-commits] r2999 - trunk/widgets/Search
svn_fusion at osgeo.org
svn_fusion at osgeo.org
Wed Jun 21 07:45:20 PDT 2017
Author: jng
Date: 2017-06-21 07:45:20 -0700 (Wed, 21 Jun 2017)
New Revision: 2999
Modified:
trunk/widgets/Search/SearchPrompt.php
Log:
#657: Escape double quotes in search filters as double-quote is a legitimate FDO property name qualifier.
Modified: trunk/widgets/Search/SearchPrompt.php
===================================================================
--- trunk/widgets/Search/SearchPrompt.php 2017-06-19 14:06:34 UTC (rev 2998)
+++ trunk/widgets/Search/SearchPrompt.php 2017-06-21 14:45:20 UTC (rev 2999)
@@ -45,7 +45,7 @@
SetLocalizedFilesPath(GetLocalizationPath());
$templ = Localize($templ, $locale, GetClientOS());
$vpath = GetSurroundVirtualPath();
- print sprintf($templ, $popup, $properties, $propNames, $title, $prompt, $target, $filter, $layer, $limit, $vpath."Search.php", $mapName, $sessionId, $locale, $pointZoomLevel);
+ print sprintf($templ, $popup, $properties, $propNames, $title, $prompt, $target, str_replace("\"", "\\\"", $filter), $layer, $limit, $vpath."Search.php", $mapName, $sessionId, $locale, $pointZoomLevel);
More information about the fusion-commits
mailing list