equal
deleted
inserted
replaced
507 if ( sizeof ( $session->groups ) > count($taboo) ) |
507 if ( sizeof ( $session->groups ) > count($taboo) ) |
508 { |
508 { |
509 echo '<select name="group_id">'; |
509 echo '<select name="group_id">'; |
510 foreach ( $session->groups as $id => $group ) |
510 foreach ( $session->groups as $id => $group ) |
511 { |
511 { |
512 $taboo[] = $group; |
512 $taboo[] = $db->escape($group); |
|
513 $group = htmlspecialchars($group); |
513 if ( $group != 'Everyone' ) |
514 if ( $group != 'Everyone' ) |
514 { |
515 { |
515 $g_name_local = 'groupcp_grp_' . strtolower($group); |
516 $g_name_local = 'groupcp_grp_' . strtolower($group); |
516 $str = $lang->get($g_name_local); |
517 $str = $lang->get($g_name_local); |
517 if ( $str != $g_name_local ) |
518 if ( $str != $g_name_local ) |
547 <select name="group_id_n">'; |
548 <select name="group_id_n">'; |
548 while ( $row = $db->fetchrow() ) |
549 while ( $row = $db->fetchrow() ) |
549 { |
550 { |
550 if ( $row['group_name'] != 'Everyone' ) |
551 if ( $row['group_name'] != 'Everyone' ) |
551 { |
552 { |
552 echo '<option value="' . $row['group_id'] . '">' . $row['group_name'] . '</option>'; |
553 echo '<option value="' . $row['group_id'] . '">' . htmlspecialchars($row['group_name']) . '</option>'; |
553 } |
554 } |
554 } |
555 } |
555 echo '</select> |
556 echo '</select> |
556 <input type="submit" name="do_view_n" value="' . $lang->get('groupcp_btn_view') . '" /> |
557 <input type="submit" name="do_view_n" value="' . $lang->get('groupcp_btn_view') . '" /> |
557 </td> |
558 </td> |