summaryrefslogtreecommitdiff
path: root/message.php
diff options
context:
space:
mode:
Diffstat (limited to 'message.php')
-rw-r--r--message.php18
1 files changed, 9 insertions, 9 deletions
diff --git a/message.php b/message.php
index dbe70f137a..6c854faff1 100644
--- a/message.php
+++ b/message.php
@@ -71,7 +71,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
// No errors. Send the message.
foreach ($recipients as $recipient) {
if (deliverMessage($WT_TREE, $from_email, $from_name, $recipient, $subject, $body, $url)) {
- FlashMessages::addMessage(I18N::translate('The message was successfully sent to %s.', Filter::escapeHtml($to)), 'info');
+ FlashMessages::addMessage(I18N::translate('The message was successfully sent to %s.', Html::escape($to)), 'info');
} else {
FlashMessages::addMessage(I18N::translate('The message was not sent.'), 'danger');
Log::addErrorLog('Unable to send a message. FROM:' . $from_email . ' TO:' . $recipient->getEmail());
@@ -102,15 +102,15 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<form method="post">
<?= Filter::getCsrf() ?>
- <input type="hidden" name="url" value="<?= Filter::escapeHtml($url) ?>">
+ <input type="hidden" name="url" value="<?= Html::escape($url) ?>">
<div class="form-group row">
<div class="col-sm-3 col-form-label">
<?= I18N::translate('To') ?>
</div>
<div class="col-sm-9">
- <input type="hidden" name="to" value="<?= Filter::escapeHtml($to) ?>">
- <div class="form-control"><?= Filter::escapeHtml($to_names) ?></div>
+ <input type="hidden" name="to" value="<?= Html::escape($to) ?>">
+ <div class="form-control"><?= Html::escape($to_names) ?></div>
</div>
</div>
@@ -120,7 +120,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<?= I18N::translate('From') ?>
</div>
<div class="col-sm-9">
- <div class="form-control"><?= Filter::escapeHtml(Auth::user()->getRealName()) ?></div>
+ <div class="form-control"><?= Html::escape(Auth::user()->getRealName()) ?></div>
</div>
</div>
<?php else: ?>
@@ -129,7 +129,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<?= I18N::translate('Your name') ?>
</label>
<div class="col-sm-9">
- <input class="form-control" id="from-name" type="text" name="from_name" value="<?= Filter::escapeHtml($from_name) ?>" required>
+ <input class="form-control" id="from-name" type="text" name="from_name" value="<?= Html::escape($from_name) ?>" required>
</div>
</div>
<div class="form-group row">
@@ -137,7 +137,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<?= I18N::translate('Email address') ?>
</label>
<div class="col-sm-9">
- <input class="form-control" id="from-email" type="text" name="from_email" value="<?= Filter::escapeHtml($from_email) ?>" required>
+ <input class="form-control" id="from-email" type="text" name="from_email" value="<?= Html::escape($from_email) ?>" required>
</div>
</div>
<?php endif ?>
@@ -147,7 +147,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<?= I18N::translate('Subject') ?>
</label>
<div class="col-sm-9">
- <input class="form-control" id="subject" type="text" name="subject" value="<?= Filter::escapeHtml($subject) ?>" required>
+ <input class="form-control" id="subject" type="text" name="subject" value="<?= Html::escape($subject) ?>" required>
</div>
</div>
@@ -156,7 +156,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu
<?= I18N::translate('Body') ?>
</label>
<div class="col-sm-9">
- <textarea class="form-control" id="body" type="text" name="body" required><?= Filter::escapeHtml($body) ?></textarea>
+ <textarea class="form-control" id="body" type="text" name="body" required><?= Html::escape($body) ?></textarea>
</div>
</div>