Ticket #813: BOINC_project_page_validation_fixes.patch

File BOINC_project_page_validation_fixes.patch, 13.2 KB (added by Simek, 16 years ago)

  • inc/prefs.inc

     
    640640    $pre_add  = "<a href=add_venue.php?venue=";
    641641    $pre_edit  = "<a href=prefs_edit.php?venue=";
    642642    $pre_remove = "<a href=prefs_remove.php?venue=";
    643     $post_add = "&subset=$subset&cols=1$tokens>Add</a>";
    644     $post_edit = "&subset=$subset&cols=1$tokens>Edit</a>";
    645     $post_remove = "&subset=$subset&cols=1$tokens>Remove</a>";
    646     $gen = "<a href=prefs_edit.php?subset=$subset&cols=1$tokens>Edit</a>";
     643    $post_add = "&amp;subset=$subset&amp;cols=1$tokens>Add</a>";
     644    $post_edit = "&amp;subset=$subset&amp;cols=1$tokens>Edit</a>";
     645    $post_remove = "&amp;subset=$subset&amp;cols=1$tokens>Remove</a>";
     646    $gen = "<a href=prefs_edit.php?subset=$subset&amp;cols=1$tokens>Edit</a>";
    647647
    648648    $hom  = isset($prefs->home) ? $pre_edit."home".$post_edit : $pre_add."home".$post_add;
    649649    $schl = isset($prefs->school) ? $pre_edit."school".$post_edit : $pre_add."school".$post_add;
     
    842842            if ($project_has_beta) prefs_show_beta($x);
    843843            prefs_show_project($x);
    844844        }
    845         row2("<br>", "<a href=prefs_edit.php?venue=$venue&subset=$subset$tokens>Edit preferences</a> | <a href=prefs_remove.php?venue=$venue&subset=$subset$tokens>Remove</a>");
     845        row2("<br>", "<a href=prefs_edit.php?venue=$venue&amp;subset=$subset$tokens>Edit preferences</a> | <a href=prefs_remove.php?venue=$venue&amp;subset=$subset$tokens>Remove</a>");
    846846        end_table();
    847847        echo "</td></tr>\n";
    848848    } else {
    849849        //$x = subset_name($subset);
    850         row1("<a href=add_venue.php?venue=$venue&subset=$subset$tokens>Add separate preferences for $venue</a>", 2, "heading");
     850        row1("<a href=add_venue.php?venue=$venue&amp;subset=$subset$tokens>Add separate preferences for $venue</a>", 2, "heading");
    851851    }
    852852}
    853853

  • inc/result.inc

     
    286286    echo "<br><center>";
    287287    if ($offset >= $results_per_page) {
    288288        $offset_p = $offset-$results_per_page;
    289         echo "<a href=results.php?$clause&offset=$offset_p>Previous $results_per_page</a>";
     289        echo "<a href=results.php?$clause&amp;offset=$offset_p>Previous $results_per_page</a>";
    290290    }
    291291    if (($offset >= $results_per_page) && ($number_of_results > $results_per_page)) {
    292292        echo "&nbsp;|&nbsp;";
    293293    }
    294294    if ($number_of_results > $results_per_page) {
    295295        $offset_n = $offset+$results_per_page;
    296         echo "<a href=results.php?$clause&offset=$offset_n>Next $results_per_page</a></center><br>";
     296        echo "<a href=results.php?$clause&amp;offset=$offset_n>Next $results_per_page</a></center><br>";
    297297    } else {
    298298        echo "</center><br><br>";
    299299    }

  • inc/stats_sites.inc

     
    2020//
    2121$cpid_stats_sites = array(
    2222    array("Free-DC",
    23         "http://stats.free-dc.org/stats.php?page=userbycpid&cpid=%s"
     23        "http://stats.free-dc.org/stats.php?page=userbycpid&amp;cpid=%s"
    2424    ),
    2525    array("BOINC all Project Stats",
    2626        "http://www.allprojectstats.com/showuser.php?id=%s"

  • inc/team.inc

     
    7373    page_head("$team->name");
    7474
    7575    echo sanitize_html($team->name_html);
    76     echo "<p>";
    7776    start_table();
    7877    row1(tra('Team info'));
    7978    if (strlen($team->description)) {

  • ops/update_profile_pages.php

     
    184184            Only user profiles with pictures are listed here.";
    185185
    186186
    187         echo "<table class=bordered border=1 cellpadding=5\n";
     187        echo "<table class=bordered border=1 cellpadding=5>\n";
    188188
    189189        for ($row = 0; $row < $height; $row++) {
    190190            echo "<tr>";

  • project.sample/project.inc

     
    3535    echo "
    3636        <p>
    3737        <span class=\"page_title\">$title</span>
    38         <p>
    3938    ";
    4039}
    4140

  • user/create_account_form.php

     
    4343}
    4444
    4545echo "
    46     <p>
    4746    <form action=\"create_account_action.php\" method=\"post\">
    4847    <input type=hidden name=next_url value=\"$next_url\">
    4948";

  • user/edit_forum_preferences_form.php

     
    4040    </script>
    4141";
    4242
     43echo "<form method=\"post\" action=\"edit_forum_preferences_action.php\" enctype=\"multipart/form-data\">";
    4344start_table();
    44 echo "<form method=\"post\" action=\"edit_forum_preferences_action.php\" enctype=\"multipart/form-data\">";
    4545
    4646// ------------ Notification -----------
    4747
     
    198198
    199199row1("Update");
    200200row2("Click here to update message board preferences", "<input type=submit value=\"Update\">");
    201 echo "</form>\n";
    202201row1("Reset");
    203202row2("Or click here to reset preferences to the defaults",
    204203    "<form method=\"post\" action=\"edit_forum_preferences_action.php\"><input type=\"submit\" value=\"Reset\"><input type=\"hidden\" name=\"action\" value=\"reset_confirm\"></form>"
    205204);
    206205end_table();
     206echo "</form>\n";
    207207page_tail();
    208208
    209209$cvs_version_tracker[]="\$Id$";  //Generated automatically - do not edit

  • user/edit_passwd_form.php

     
    2929    <form method=post action=edit_passwd_action.php>
    3030";
    3131
    32 start_table();
    33 
    3432if ($user) {
    3533    echo "
    3634        <input type=hidden name=auth value=$user->authenticator>
    3735    ";
     36        start_table();
    3837} else {
     38        start_table();
    3939    row1("You can identify yourself using either
    4040        <ul>
    4141        <li> your email address and old password

  • user/hosts_user.php

     
    122122    // At this point, we know that $userid, $show_all and $sort all have
    123123    // valid values.
    124124    //
    125     $cache_args="userid=$userid&show_all=$show_all&sort=$sort&rev=$rev";
     125    $cache_args="userid=$userid&amp;show_all=$show_all&amp;sort=$sort&amp;rev=$rev";
    126126    start_cache(USER_PAGE_TTL, $cache_args);
    127127    if ($user->show_hosts) {
    128128        page_head("Computers belonging to $user->name");

  • user/pm.php

     
    2323require_once("../inc/akismet.inc");
    2424
    2525function show_block_link($userid) {
    26     echo " <a href=\"pm.php?action=block&id=$userid\">";
     26    echo " <a href=\"pm.php?action=block&amp;id=$userid\">";
    2727    show_image(REPORT_POST_IMAGE, "Block messages from this user",  "Block user", REPORT_POST_IMAGE_HEIGHT);
    2828    echo "</a>";
    2929}
     
    4242
    4343function make_script() {
    4444    echo "
    45         <script>
     45        <script  type=\"text/javascript\">
    4646        function set_all(val) {
    4747            f = document.msg_list;
    4848            n = f.elements.length;
     
    9999            echo "<td valign=top>".output_transform($msg->content, $options)."<p>";
    100100            $tokens = url_tokens($logged_in_user->authenticator);
    101101            echo "<ul class=\"actionlist\">";
    102             show_actionlist_button("pm.php?action=delete&id=$msg->id&$tokens", tra("Delete"), "Delete this message");
    103             show_actionlist_button("pm.php?action=new&replyto=$msg->id", tra("Reply"), "Reply to this message");
     102            show_actionlist_button("pm.php?action=delete&amp;id=$msg->id&$tokens", tra("Delete"), "Delete this message");
     103            show_actionlist_button("pm.php?action=new&amp;replyto=$msg->id", tra("Reply"), "Reply to this message");
    104104            echo "</ul></td></tr>\n";
    105105        }
    106106        echo "

  • user/prefs_remove.php

     
    5050        Are you sure you want to delete your separate ", subset_name($subset),
    5151        " preferences for $venue?
    5252        <br><br>
    53         <a href=prefs_remove.php?subset=$subset&venue=$venue&confirmed=yes$c$tokens>Yes</a>
     53        <a href=prefs_remove.php?subset=$subset&amp;venue=$venue&amp;confirmed=yes$c$tokens>Yes</a>
    5454        | <a href=prefs.php?subset=$subset$c>Cancel</a>
    5555    ";
    5656    page_tail();

  • user/profile_menu.php

     
    5858    <ul>
    5959    <li>".tra("View the %1User Picture Gallery%2.", "<a href=\"" . URL_BASE . "user_profile/user_gallery_1.html\">", "</a>")."</li>
    6060    <li>".tra("Browse profiles %1by country%2.", "<a href=\"" . URL_BASE . "user_profile/profile_country.html\">", "</a>")."</li>
    61     <li>".tra("Browse profiles %1at random%2, %3at random with pictures%2, or %4at random without pictures%2.", "<a href=\"?cmd=rand&pic=-1\">", "</a>",
    62             "<a href=\"?cmd=rand&pic=1\">", "<a href=\"?cmd=rand&pic=0\">")."</li>
     61    <li>".tra("Browse profiles %1at random%2, %3at random with pictures%2, or %4at random without pictures%2.", "<a href=\"?cmd=rand&amp;pic=-1\">", "</a>",
     62            "<a href=\"?cmd=rand&amp;pic=1\">", "<a href=\"?cmd=rand&amp;pic=0\">")."</li>
    6363";
    6464if (file_exists(PROFILE_PATH . "profile_alpha.html")) {
    6565    echo "<li>".tra("Alphabetical profile listings:")."<br>";

  • user/top_hosts.php

     
    8888echo "</table>\n<p>";
    8989if ($offset > 0) {
    9090    $new_offset = $offset - $hosts_per_page;
    91     echo "<a href=top_hosts.php?sort_by=$sort_by&offset=$new_offset>Previous ".$hosts_per_page."</a> | ";
     91    echo "<a href=top_hosts.php?sort_by=$sort_by&amp;offset=$new_offset>Previous ".$hosts_per_page."</a> | ";
    9292
    9393}
    9494if ($n==$hosts_per_page){ //If we aren't on the last page
    9595    $new_offset = $offset + $hosts_per_page;
    96     echo "<a href=top_hosts.php?sort_by=$sort_by&offset=$new_offset>Next ".$hosts_per_page."</a>";
     96    echo "<a href=top_hosts.php?sort_by=$sort_by&amp;offset=$new_offset>Next ".$hosts_per_page."</a>";
    9797}
    9898
    9999page_tail();

  • user/top_teams.php

     
    117117    echo "</table>\n<p>";
    118118    if ($offset > 0) {
    119119        $new_offset = $offset - $teams_per_page;
    120         echo "<a href=top_teams.php?sort_by=$sort_by&offset=$new_offset".$type_url.">Previous ".$teams_per_page."</a> | ";
     120        echo "<a href=top_teams.php?sort_by=$sort_by&amp;offset=$new_offset".$type_url.">Previous ".$teams_per_page."</a> | ";
    121121
    122122    }
    123123    if ($n==$teams_per_page){ //If we aren't on the last page
    124124        $new_offset = $offset + $teams_per_page;
    125         echo "<a href=top_teams.php?sort_by=$sort_by&offset=$new_offset".$type_url.">Next ".$teams_per_page."</a>";
     125        echo "<a href=top_teams.php?sort_by=$sort_by&amp;offset=$new_offset".$type_url.">Next ".$teams_per_page."</a>";
    126126    }
    127127}
    128128page_tail();

  • user/top_users.php

     
    123123echo "</table>\n<p>";
    124124if ($offset > 0) {
    125125    $new_offset = $offset - $users_per_page;
    126     echo "<a href=top_users.php?sort_by=$sort_by&offset=$new_offset>Previous ".$users_per_page."</a> | ";
     126    echo "<a href=top_users.php?sort_by=$sort_by&amp;offset=$new_offset>Previous ".$users_per_page."</a> | ";
    127127
    128128}
    129129if ($n==$users_per_page){ //If we aren't on the last page
    130130    $new_offset = $offset + $users_per_page;
    131     echo "<a href=top_users.php?sort_by=$sort_by&offset=$new_offset>Next ".$users_per_page."</a>";
     131    echo "<a href=top_users.php?sort_by=$sort_by&amp;offset=$new_offset>Next ".$users_per_page."</a>";
    132132}
    133133
    134134page_tail();

  • user/user_search.php

     
    131131    row2("", "<input type=submit name=action value=Search>");
    132132    end_table();
    133133    echo "
    134         <script>document.f.search_string.focus()</script>
     134                </form>
     135        <script type=\"text/javascript\">document.f.search_string.focus()</script>
    135136    ";
    136137           
    137138    page_tail();