Context Navigation

Ticket #799: profile-html.diff

File profile-html.diff, 1.0 KB (added by Nicolas, 15 years ago)
Remove sanitize_html calls from profile creation. All tags are already escaped at this point, so they are harmless.

         ImageJPEG($images[0], IMAGE_PATH . $user->id . '.jpg');
         ImageJPEG($images[1], IMAGE_PATH . $user->id . '_sm.jpg');
+    }
-    $response1 = sanitize_html($response1);
-    $response2 = sanitize_html($response2);
     if ($profile) {
         $query = " response1 = '".boinc_real_escape_string($response1)."',"
             ." response2 = '".boinc_real_escape_string($response2)."',"

 require_once("../inc/boinc_db.inc");
 require_once("../inc/util.inc");
-require_once("../inc/sanitize_html.inc");
 require_once("../inc/cache.inc");
 require_once("../inc/user.inc");
 require_once("../inc/translation.inc");