diff options
Diffstat (limited to 'message.php')
| -rw-r--r-- | message.php | 18 |
1 files changed, 9 insertions, 9 deletions
diff --git a/message.php b/message.php index dbe70f137a..6c854faff1 100644 --- a/message.php +++ b/message.php @@ -71,7 +71,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') { // No errors. Send the message. foreach ($recipients as $recipient) { if (deliverMessage($WT_TREE, $from_email, $from_name, $recipient, $subject, $body, $url)) { - FlashMessages::addMessage(I18N::translate('The message was successfully sent to %s.', Filter::escapeHtml($to)), 'info'); + FlashMessages::addMessage(I18N::translate('The message was successfully sent to %s.', Html::escape($to)), 'info'); } else { FlashMessages::addMessage(I18N::translate('The message was not sent.'), 'danger'); Log::addErrorLog('Unable to send a message. FROM:' . $from_email . ' TO:' . $recipient->getEmail()); @@ -102,15 +102,15 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <form method="post"> <?= Filter::getCsrf() ?> - <input type="hidden" name="url" value="<?= Filter::escapeHtml($url) ?>"> + <input type="hidden" name="url" value="<?= Html::escape($url) ?>"> <div class="form-group row"> <div class="col-sm-3 col-form-label"> <?= I18N::translate('To') ?> </div> <div class="col-sm-9"> - <input type="hidden" name="to" value="<?= Filter::escapeHtml($to) ?>"> - <div class="form-control"><?= Filter::escapeHtml($to_names) ?></div> + <input type="hidden" name="to" value="<?= Html::escape($to) ?>"> + <div class="form-control"><?= Html::escape($to_names) ?></div> </div> </div> @@ -120,7 +120,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <?= I18N::translate('From') ?> </div> <div class="col-sm-9"> - <div class="form-control"><?= Filter::escapeHtml(Auth::user()->getRealName()) ?></div> + <div class="form-control"><?= Html::escape(Auth::user()->getRealName()) ?></div> </div> </div> <?php else: ?> @@ -129,7 +129,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <?= I18N::translate('Your name') ?> </label> <div class="col-sm-9"> - <input class="form-control" id="from-name" type="text" name="from_name" value="<?= Filter::escapeHtml($from_name) ?>" required> + <input class="form-control" id="from-name" type="text" name="from_name" value="<?= Html::escape($from_name) ?>" required> </div> </div> <div class="form-group row"> @@ -137,7 +137,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <?= I18N::translate('Email address') ?> </label> <div class="col-sm-9"> - <input class="form-control" id="from-email" type="text" name="from_email" value="<?= Filter::escapeHtml($from_email) ?>" required> + <input class="form-control" id="from-email" type="text" name="from_email" value="<?= Html::escape($from_email) ?>" required> </div> </div> <?php endif ?> @@ -147,7 +147,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <?= I18N::translate('Subject') ?> </label> <div class="col-sm-9"> - <input class="form-control" id="subject" type="text" name="subject" value="<?= Filter::escapeHtml($subject) ?>" required> + <input class="form-control" id="subject" type="text" name="subject" value="<?= Html::escape($subject) ?>" required> </div> </div> @@ -156,7 +156,7 @@ $to_names = implode(I18N::$list_separator, array_map(function(User $user) { retu <?= I18N::translate('Body') ?> </label> <div class="col-sm-9"> - <textarea class="form-control" id="body" type="text" name="body" required><?= Filter::escapeHtml($body) ?></textarea> + <textarea class="form-control" id="body" type="text" name="body" required><?= Html::escape($body) ?></textarea> </div> </div> |
