Package home | Report new bug | New search | Development Roadmap Status: Open | Feedback | All | Closed Since Version 1.26.0

Bug #10906 Bug tracker escapes too much
Submitted: 2007-05-01 15:07 UTC Modified: 2007-05-08 02:38 UTC
From: wiesemann Assigned: cellog
Status: Closed Package: pearweb (version 1.14.0)
PHP Version: Irrelevant OS:
Roadmaps: 1.16.0    
Subscription  


 [2007-05-01 15:07 UTC] wiesemann (Mark Wiesemann)
Description: ------------ When viewing a bug, names are escaped too much. Example: [2007-03-21 16:49 UTC] designatevoid (Michael "Vladimyr" Gower) (=> http://pear.php.net/bugs/bug.php?id=10442) The htmlspecialchars() in line 1248 of bugs/bug.php seems to be too much. (But I haven't checked whether the name is always saved with entities in the database.)

Comments

 [2007-05-06 15:59 UTC] cellog (Greg Beaver)
This bug has been fixed in CVS. If this was a documentation problem, the fix will appear on pear.php.net by the end of next Sunday (CET). If this was a problem with the pear.php.net website, the change should be live shortly. Otherwise, the fix will appear in the package's next release. Thank you for the report and for helping us make PEAR better.
 [2007-05-06 17:06 UTC] wiesemann (Mark Wiesemann)
The fix has added a new notice. The removed $reporter_name variable is still used in the script (one time only), but doesn't exist anymore.
 [2007-05-06 17:52 UTC] cellog (Greg Beaver)
This bug has been fixed in CVS. If this was a documentation problem, the fix will appear on pear.php.net by the end of next Sunday (CET). If this was a problem with the pear.php.net website, the change should be live shortly. Otherwise, the fix will appear in the package's next release. Thank you for the report and for helping us make PEAR better.
 [2007-05-07 02:31 UTC] wiesemann (Mark Wiesemann)
Using $auth_user makes no sense here, it's not existing. In line 297 people are not logged in and have submitted a new bug report. $_POST['in']['reporter_name'] works. (I've tested it. isset() check not needed).
 [2007-05-08 02:38 UTC] wiesemann (Mark Wiesemann)
This bug has been fixed in CVS. If this was a documentation problem, the fix will appear on pear.php.net by the end of next Sunday (CET). If this was a problem with the pear.php.net website, the change should be live shortly. Otherwise, the fix will appear in the package's next release. Thank you for the report and for helping us make PEAR better. --- ATTENTION: Bug reporting for anonymous users is currently broken on the website. The fix should either be released soon or synced by copying the file to the web server.